Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Drive DevSecOps initiatives and embed security in software delivery.
- Company: Join a niche SaaS tech company focused on secure software solutions.
- Benefits: Enjoy remote work flexibility and the chance to shape security practices.
- Why this job: Be part of a fast-paced environment that values security as a core principle.
- Qualifications: 5+ years in AppSec or DevSecOps with hands-on security tool experience.
- Other info: Work collaboratively with diverse teams to enhance security posture.
The predicted salary is between 48000 - 72000 £ per year.
Location: Remote – UK or EMEA based
6 months+ Contract
Niche SaaS Tech company are seeking a Senior DevSecOps / Application Security Engineer to champion and drive their DevSecOps initiatives—shaping secure software delivery across a fast-moving, cloud-native environment. In this role, you’ll own and evolve the security tooling and automation embedded in their SDLC and CI/CD pipelines, working closely with software engineers, DevOps, and data scientists. You will help ensure security is not a final step—but an integral, continuous part of how they build and ship software.
You will:
- Embed and automate security controls across CI/CD workflows
- Lead the integration of SAST, DAST, SCA, and threat modeling tools in DevSecOps pipelines
- Collaborate with developers to enable secure coding and privacy by design
- Drive adoption of secure development standards and practices across the org
- Operate and evolve our software vulnerability management and bug bounty programs
- Work cross-functionally to identify risks and improve security posture continuously
- Support cloud-native app and ML security efforts across Azure and AWS
- Own AppSec policies, incident response processes, and related KPIs/KRIs
Key Skills Required:
- 5+ years in AppSec or DevSecOps, with strong experience in secure SDLC and CI/CD
- Hands-on knowledge of security tools like GitHub Advanced Security, Veracode, Snyk, ZAP, Burp
- Familiarity with OWASP, MITRE, CWE, and modern dev frameworks (C#, Java, Python, React)
- Knowledge of scripting languages (Python, Ruby, Rust)
- Excellent communication skills to bridge tech and business stakeholders
- Passion for building scalable security solutions that enable teams, not slow them down
Contact Detail:
Acumin Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land DevSecOps / Application Security Engineer
✨Tip Number 1
Familiarise yourself with the specific security tools mentioned in the job description, such as GitHub Advanced Security and Veracode. Having hands-on experience or even a solid understanding of these tools will help you stand out during discussions.
✨Tip Number 2
Showcase your ability to collaborate effectively with cross-functional teams. Prepare examples from your past experiences where you successfully worked with developers and DevOps to implement security measures, as this is crucial for the role.
✨Tip Number 3
Stay updated on the latest trends and best practices in DevSecOps and application security. Being able to discuss recent developments or case studies during your interview can demonstrate your passion and commitment to the field.
✨Tip Number 4
Prepare to discuss how you would approach embedding security into CI/CD workflows. Think about specific strategies or frameworks you would use, as this will show your proactive mindset and technical expertise.
We think you need these skills to ace DevSecOps / Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in AppSec and DevSecOps. Focus on your hands-on knowledge of security tools and your familiarity with secure SDLC and CI/CD processes.
Craft a Compelling Cover Letter: In your cover letter, express your passion for building scalable security solutions. Mention specific projects where you have successfully integrated security into development workflows, showcasing your ability to collaborate with cross-functional teams.
Highlight Key Skills: Clearly list your key skills such as experience with GitHub Advanced Security, Veracode, and scripting languages like Python or Ruby. Use bullet points for easy readability and to draw attention to your qualifications.
Showcase Communication Skills: Since excellent communication is crucial for this role, provide examples of how you've effectively bridged the gap between technical and business stakeholders in previous positions. This could be through successful project collaborations or presentations.
How to prepare for a job interview at Acumin
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with security tools like GitHub Advanced Security, Veracode, and Snyk. Highlight specific projects where you integrated these tools into CI/CD pipelines, demonstrating your ability to embed security controls effectively.
✨Demonstrate Collaboration Skills
Since the role involves working closely with software engineers and DevOps teams, share examples of how you've successfully collaborated in the past. Discuss how you’ve enabled secure coding practices and driven the adoption of security standards across teams.
✨Understand the Business Impact
Articulate how security is not just a technical requirement but a business enabler. Be ready to explain how your initiatives have improved security posture while allowing teams to deliver software efficiently, thus aligning with the company's goals.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills in real-world scenarios. Think about potential security threats in cloud-native environments and how you would address them, particularly in relation to Azure and AWS.
