Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Drive DevSecOps initiatives and embed security in software delivery.
- Company: Join a niche SaaS tech company focused on secure software solutions.
- Benefits: Enjoy remote work flexibility and the chance to shape security practices.
- Why this job: Be part of a fast-paced environment that values security as a core principle.
- Qualifications: 5+ years in AppSec or DevSecOps with hands-on security tool experience.
- Other info: Work collaboratively with diverse teams to enhance security posture.
The predicted salary is between 48000 - 72000 £ per year.
Location: Remote – UK or EMEA based
6 months+ Contract
Niche SaaS Tech company are seeking a Senior DevSecOps / Application Security Engineer to champion and drive their DevSecOps initiatives—shaping secure software delivery across a fast-moving, cloud-native environment. In this role, you’ll own and evolve the security tooling and automation embedded in their SDLC and CI/CD pipelines, working closely with software engineers, DevOps, and data scientists. You’ll help ensure security is not a final step—but an integral, continuous part of how they build and ship software.
You will:
- Embed and automate security controls across CI/CD workflows
- Lead the integration of SAST, DAST, SCA, and threat modeling tools in DevSecOps pipelines
- Collaborate with developers to enable secure coding and privacy by design
- Drive adoption of secure development standards and practices across the org
- Operate and evolve our software vulnerability management and bug bounty programs
- Work cross-functionally to identify risks and improve security posture continuously
- Support cloud-native app and ML security efforts across Azure and AWS
- Own AppSec policies, incident response processes, and related KPIs/KRIs
Key Skills Required:
- 5+ years in AppSec or DevSecOps, with strong experience in secure SDLC and CI/CD
- Hands-on knowledge of security tools like GitHub Advanced Security, Veracode, Snyk, ZAP, Burp
- Familiarity with OWASP, MITRE, CWE, and modern dev frameworks (C#, Java, Python, React)
- Knowledge of scripting languages (Python, Ruby, Rust)
- Excellent communication skills to bridge tech and business stakeholders
- Passion for building scalable security solutions that enable teams, not slow them down
DevSecOps / Application Security Engineer employer: Acumin
Contact Detail:
Acumin Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land DevSecOps / Application Security Engineer
✨Tip Number 1
Familiarise yourself with the specific security tools mentioned in the job description, such as GitHub Advanced Security and Veracode. Having hands-on experience or even a solid understanding of these tools will give you an edge during discussions with our team.
✨Tip Number 2
Showcase your knowledge of secure coding practices and how you've implemented them in past projects. Be ready to discuss specific examples where you collaborated with developers to enhance security within CI/CD pipelines.
✨Tip Number 3
Prepare to talk about your experience with cloud-native applications, particularly in Azure and AWS. Highlight any relevant projects where you’ve integrated security measures into cloud environments, as this is crucial for the role.
✨Tip Number 4
Demonstrate your passion for security by discussing any personal projects or contributions to open-source initiatives related to AppSec or DevSecOps. This shows your commitment to the field and can set you apart from other candidates.
We think you need these skills to ace DevSecOps / Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in DevSecOps and Application Security. Focus on specific projects where you've implemented security controls in CI/CD pipelines and mention the tools you've used, such as GitHub Advanced Security or Veracode.
Craft a Compelling Cover Letter: In your cover letter, express your passion for secure software delivery and how you can contribute to the company's DevSecOps initiatives. Mention your familiarity with cloud-native environments and your ability to collaborate with cross-functional teams.
Showcase Relevant Skills: Clearly list your technical skills relevant to the role, such as knowledge of OWASP, scripting languages like Python or Ruby, and experience with security tools. Use bullet points for clarity and impact.
Highlight Communication Abilities: Since excellent communication skills are essential for this role, provide examples of how you've successfully bridged the gap between technical and business stakeholders in previous positions. This will demonstrate your ability to work effectively within teams.
How to prepare for a job interview at Acumin
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with security tools like GitHub Advanced Security, Veracode, and Snyk. Highlight specific projects where you integrated these tools into CI/CD pipelines, demonstrating your ability to embed security controls effectively.
✨Demonstrate Collaboration Skills
Since the role involves working closely with software engineers and DevOps teams, share examples of how you've successfully collaborated in the past. Discuss how you’ve enabled secure coding practices and driven the adoption of security standards across teams.
✨Understand the Business Impact
Articulate how security is not just a technical requirement but a business enabler. Be ready to explain how your initiatives have improved security posture while allowing teams to deliver software efficiently, thus aligning with the company's goals.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills in real-world scenarios. Think about potential security threats in cloud-native environments and how you would address them, particularly in relation to Azure and AWS.
