Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead application security efforts, conduct code analysis, and mentor junior team members.
- Company: Join a dynamic team focused on safeguarding applications and ensuring compliance in a tech-driven environment.
- Benefits: Enjoy hybrid working options and a collaborative culture that values innovation and security.
- Why this job: Make a real impact by securing applications while working with cutting-edge tools and methodologies.
- Qualifications: Experience in application security testing, knowledge of OWASP, and familiarity with CI/CD pipelines required.
- Other info: This role is perfect for tech-savvy individuals passionate about security and software development.
The predicted salary is between 43200 - 72000 £ per year.
A Senior Information Security Specialist, who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The application security team deal with the security of closed source, open source and in house written applications. The objective is to ensure applications are developed in a way that is secure and compliant with the Company’s regulatory obligations.
You will be working closely with the software development function, to ensure that application based vulnerabilities are understood and mitigated. It is therefore important that you possess an understanding of the Secure Software Development Lifecycles and the assessment of code. This role is part of the broader Information Security department, which is comprised of engineers and analysts with varying backgrounds. Collectively, the team utilises enterprise and bespoke tooling to identify and mitigate threats to safeguard the Business. This role is eligible for inclusion in the Company’s hybrid working from home policy.
Preferred skills and experience- Excellent understanding and demonstrable experience of automated, dynamic and static application security testing tools.
- Excellent understanding and experience with manual security testing to find vulnerabilities and logical issues.
- Knowledge and understanding of OWASP and its utilisation within threat modelling.
- Experience of software development and languages.
- Working knowledge of CI and CD pipelines and associated security tooling.
- Use of planned structured methodologies for conducting and reporting on Web Application Penetration Testing.
- Strong documentation skills.
- Excellent communication skills.
- Providing support to technical leads and mentoring junior members of the team.
- Taking a lead role in the project process to ensure that information security aspects are considered up front and throughout the project lifecycle.
- Contributing to and utilising our security testing methodologies, creating and updating technical documentation as necessary.
- Conducting manual and automated source code review.
- Liaising with the software development function to ensure that security is considered throughout the lifecycle.
- Identifying and managing any security flaws within our software through appropriately liaising with external bodies where necessary.
- Performing risk assessments, threat modelling and design reviews to ensure effective security controls.
- Identifying opportunities for converting manual tasks into automated processes and identify tooling to support such automation.
Contact Detail:
LinkedIn Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Information Security Specialist (Stoke)
✨Tip Number 1
Familiarise yourself with the latest trends in application security and code analysis. Being well-versed in tools like OWASP and understanding their application in threat modelling will give you an edge during discussions with our team.
✨Tip Number 2
Engage with online communities or forums related to information security. Networking with professionals in the field can provide insights into best practices and may even lead to referrals within our company.
✨Tip Number 3
Prepare to discuss your experience with CI/CD pipelines and how you've integrated security tooling in past projects. Demonstrating practical knowledge in this area will show us that you can contribute effectively from day one.
✨Tip Number 4
Consider creating a portfolio of your previous work, especially any documentation or methodologies you've developed. This will not only showcase your skills but also highlight your ability to communicate complex security concepts clearly.
We think you need these skills to ace Senior Information Security Specialist (Stoke)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience with application security, code analysis, and any relevant tools you've used. Emphasise your understanding of Secure Software Development Lifecycles and your experience with both automated and manual security testing.
Craft a Strong Cover Letter: In your cover letter, explain why you're passionate about information security and how your skills align with the role. Mention specific experiences where you've successfully identified and mitigated vulnerabilities in applications.
Showcase Relevant Skills: Clearly list your knowledge of OWASP, CI/CD pipelines, and any programming languages you are proficient in. Provide examples of how you've applied these skills in previous roles to enhance application security.
Prepare for Technical Questions: Anticipate technical questions related to application security and be ready to discuss your methodologies for conducting security assessments. Be prepared to share insights on how you would approach risk assessments and threat modelling.
How to prepare for a job interview at LinkedIn
✨Showcase Your Technical Expertise
Be prepared to discuss your experience with automated, dynamic, and static application security testing tools. Highlight specific projects where you successfully identified vulnerabilities and how you mitigated them.
✨Understand Secure Software Development Lifecycles
Demonstrate your knowledge of Secure Software Development Lifecycles during the interview. Be ready to explain how you've applied these principles in past roles to ensure secure application development.
✨Familiarise Yourself with OWASP
Make sure you have a solid understanding of OWASP and its relevance in threat modelling. Prepare to discuss how you've utilised OWASP guidelines in your previous work to enhance application security.
✨Communicate Effectively
Since this role involves liaising with software development teams, practice articulating complex security concepts in a clear and concise manner. Good communication skills are essential for mentoring junior team members and collaborating effectively.
