Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead application security initiatives and optimise security tools for global engineering teams.
- Company: Trimble transforms industries with innovative technology connecting the physical and digital worlds.
- Benefits: Enjoy remote work flexibility, competitive salary, and a commitment to diversity and inclusion.
- Why this job: Be a visionary leader in application security, shaping best practices and making a global impact.
- Qualifications: 5+ years in application security, expertise in SCA and SAST, and strong programming skills required.
- Other info: Join a diverse team that values inclusivity and celebrates differences.
The predicted salary is between 84000 - 126000 £ per year.
Join to apply for the Senior Application Security Engineer role at Trimble Inc.
Join to apply for the Senior Application Security Engineer role at Trimble Inc.
Get AI-powered advice on this job and more exclusive features.
Your Title: Senior Application Security Engineer
Job Location : UK – Remote, Germany – Remote, Poland – Remote OR Romania – Remote
About The Role
Trimble is seeking a highly experienced and passionate Senior Application Security Engineer to lead our Software Composition Analysis (SCA) and Static Application Security Testing (SAST) initiatives, with a primary focus on driving the strategic implementation and optimization of our SCA tool. This is a pivotal, corporate-level role for an individual who isn\’t just an expert in application security tooling but is also a visionary leader capable of shaping our organization\’s approach to open-source security and secure development practices across a global engineering footprint.
You\’ll be instrumental in evolving our application security posture, acting as a subject matter expert and a champion for best practices within our diverse engineering teams. Your deep technical expertise, combined with strong communication and leadership skills, will enable us to maximize the value derived from our SCA tool investment and further embed security into our software development lifecycle. This role requires the ability to drive strategy and solutions that benefit the vast majority of our engineering teams, ensuring scalable and effective security measures before addressing niche requirements.
Key Responsibilities
- SCA and SAST Leadership & Global Strategy:
- Serve as the primary technical lead and subject matter expert for SCA across Trimble, including SAST (if applicable);
- Drive the strategic vision, roadmap, and continuous improvement of our SCA implementation at an enterprise level, focusing on solutions that scale to 99% of our engineering teams globally;
- Lead the integration of SCA into our CI/CD pipelines, build systems, and development workflows for various technology stacks (e.g., .NET, Java, Python, JavaScript, Go, etc.);
- Optimize our SCA policies, rules, and configurations to reduce false positives, increase accuracy, and align with Trimble\’s risk appetite across diverse product portfolios;
- Develop and implement strategies for managing and remediating open-source vulnerabilities and license compliance issues identified by our SCA tool, considering the varied needs of a global organization;
- Champion the adoption of SCA across all development teams through scalable training programs, comprehensive documentation, and strategic support models;
- Stay current with our SCA tools features, updates, and best practices, proactively recommending and implementing enhancements that benefit the broader engineering organization.
- Collaborate with development teams, architects, and product owners globally to embed security best practices throughout the SDLC;
- Provide expert guidance and hands-on support for vulnerability remediation efforts across various applications;
- Develop and deliver security training and awareness programs tailored to developer needs at scale, with a strong focus on SCA and SAST;
- Contribute to the selection, evaluation, and implementation of other application security tools and processes as needed;
- Participate in security reviews, threat modeling, and architecture discussions to identify and mitigate security risks early in the development process;
- Advise on secure coding guidelines and standards.
- Establish and report on key metrics and KPIs related to SCA and SAST program effectiveness for the entire organization;
- Automate security processes and tooling where possible to improve efficiency and scalability;
- Respond to security incidents related to application vulnerabilities and provide expert analysis and remediation guidance;
- Mentor junior security engineers and provide technical leadership within the security team.
Required Qualifications
- Bachelor\’s degree in Computer Science, Information Security, or a related field, or equivalent practical experience;
- 5+ years of progressive experience in application security, with a strong focus on secure software development lifecycle (SSDLC);
- Demonstrable expert-level experience (5+ years) specifically implementing, configuring, tuning, and optimizing SCA for large, complex organizations. This includes deep expertise with SCA and a strong understanding of its integration capabilities;
- Proven experience with other SAST tooling (e.g., Checkmarx, SonarQube, Fortify, Veracode) and a strong understanding of their principles and challenges;
- Hands-on experience integrating security tools into CI/CD pipelines (e.g., Jenkins, Azure DevOps, GitLab CI, GitHub Actions);
- Strong understanding of common application security vulnerabilities (OWASP Top 10, CWE) and their exploitation and remediation;
- Proficiency in at least one major programming language (e.g., Java, C#, Python, JavaScript, Go);
- Experience working in agile development environments;
- Exceptional communication, presentation, and interpersonal skills, with the ability to articulate complex technical concepts and strategic initiatives to a wide (global) audience of engineers and product owners;
- Proven ability to drive strategy and influence change at an organizational level, focusing on broad solutions that impact a significant majority of engineering teams;
- Proven ability to lead and influence cross-functional teams without direct authority.
About Trimble
Trimble is transforming the way the world works by delivering products and services that connect the physical and digital worlds. Core technologies in positioning, modeling, connectivity and data analytics enable customers to improve productivity, quality, safety and sustainability. From purpose built products to enterprise lifecycle solutions, Trimble software, hardware and services are transforming a broad range of industries such as agriculture, construction, geospatial and transportation and logistics.
Trimble’s Inclusiveness Commitment
We believe in celebrating our differences. That is why our diversity is our strength. To us, that means actively participating in opportunities to be inclusive. Diversity, Equity, and Inclusion have guided our current success while also moving our desire to improve. We actively seek to add members to our community who represent our customers and the places we live and work.
We have programs in place to make sure our people are seen, heard, and welcomed and most importantly that they know they belong, no matter who they are or where they are coming from.
Trimble is proud to be an Equal Opportunity and Affirmative Action Employer and considers qualified applicants for employment without regard to race, gender, age, color, religion, national origin, marital status, disability, sexual orientation, status as a covered veteran in accordance with applicable federal, state and local laws, or any other protected factor. EOE/M/F/V/D
Trimble’s Privacy Policy
Seniority level
-
Seniority level
Mid-Senior level
Employment type
-
Employment type
Full-time
Job function
-
Job function
Other
-
Industries
Software Development
Referrals increase your chances of interviewing at Trimble Inc. by 2x
Sign in to set job alerts for “Senior Application Security Engineer” roles.
London, England, United Kingdom $140,000.00-$180,000.00 1 month ago
London, England, United Kingdom 5 months ago
Front End Developer (Remote Fixed Term Contract)
London, England, United Kingdom 3 days ago
London, England, United Kingdom 6 days ago
London, England, United Kingdom 1 week ago
London, England, United Kingdom 2 weeks ago
London, England, United Kingdom 2 weeks ago
React Developer (Full-Time or Part-Time)
London, England, United Kingdom 2 months ago
Gildersome, England, United Kingdom 2 days ago
Frontend software engineer (React) – Europe Remote
Belfast, Northern Ireland, United Kingdom $35,000.00-$40,000.00 1 month ago
City Of London, England, United Kingdom 1 week ago
Frontend software engineer (React) – Europe Remote
London, England, United Kingdom 4 weeks ago
Software Engineer I – Frontend Focus (Viator)
Oxford, England, United Kingdom 1 week ago
Newcastle Upon Tyne, England, United Kingdom 2 days ago
Software Engineer (Python) – AI Platform
London, England, United Kingdom 1 day ago
Frontend software engineer (React) – Europe Remote
Liverpool, England, United Kingdom $35,000.00-$40,000.00 1 month ago
Frontend software engineer (React) – Europe Remote
Manchester, England, United Kingdom $35,000.00-$40,000.00 1 month ago
United Kingdom $100,000.00-$150,000.00 2 months ago
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Senior Application Security Engineer employer: Trimble Inc.
Contact Detail:
Trimble Inc. Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Application Security Engineer
✨Tip Number 1
Familiarise yourself with Trimble's current application security tools and practices. Understanding their specific SCA and SAST tools will not only help you in interviews but also demonstrate your proactive approach to the role.
✨Tip Number 2
Network with current or former employees of Trimble, especially those in security roles. They can provide valuable insights into the company culture and expectations, which can be a game-changer during your interview.
✨Tip Number 3
Prepare to discuss your experience with integrating security tools into CI/CD pipelines. Be ready to share specific examples of how you've optimised these processes in previous roles, as this is crucial for the position.
✨Tip Number 4
Stay updated on the latest trends and challenges in application security, particularly around open-source vulnerabilities. Being able to speak knowledgeably about current issues will set you apart as a candidate who is genuinely passionate about the field.
We think you need these skills to ace Senior Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in application security, particularly with SCA and SAST. Use specific examples of projects where you've implemented security measures and tools, showcasing your leadership and technical skills.
Craft a Compelling Cover Letter: In your cover letter, express your passion for application security and how your vision aligns with Trimble's goals. Mention your experience with integrating security into CI/CD pipelines and your ability to drive strategy across diverse teams.
Highlight Relevant Skills: Clearly list your technical skills relevant to the role, such as proficiency in programming languages like Java or Python, and your experience with tools like Checkmarx or SonarQube. Make sure to include your understanding of OWASP Top 10 vulnerabilities.
Showcase Leadership Experience: Since this role requires strong leadership, provide examples of how you've led teams or initiatives in the past. Discuss any training programs you've developed or how you've influenced security practices within an organisation.
How to prepare for a job interview at Trimble Inc.
✨Showcase Your Technical Expertise
As a Senior Application Security Engineer, it's crucial to demonstrate your deep understanding of SCA and SAST tools. Be prepared to discuss specific experiences where you've implemented or optimised these tools in previous roles, highlighting the impact on security posture.
✨Communicate Clearly and Confidently
Strong communication skills are essential for this role. Practice articulating complex technical concepts in a way that is accessible to non-technical stakeholders. This will show your ability to lead cross-functional teams and influence change effectively.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Think about past challenges you've faced in application security and how you approached them, particularly in relation to integrating security into CI/CD pipelines.
✨Demonstrate Leadership Qualities
This role requires a visionary leader. Be ready to discuss how you've led initiatives in the past, mentored junior engineers, or championed security best practices within teams. Highlight your ability to drive strategy and foster a culture of security awareness.
