Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Drive DevSecOps initiatives and embed security in software delivery.
- Company: Join a niche SaaS tech company focused on secure software solutions.
- Benefits: Enjoy remote work flexibility and the chance to shape security practices.
- Why this job: Be part of a fast-paced environment that values security as a core principle.
- Qualifications: 5+ years in AppSec or DevSecOps with hands-on security tool experience.
- Other info: Work collaboratively with diverse teams to enhance security posture.
The predicted salary is between 48000 - 72000 £ per year.
Location: Remote – UK or EMEA based
6 months+ Contract
Niche SaaS Tech company are seeking a Senior DevSecOps / Application Security Engineer to champion and drive their DevSecOps initiatives—shaping secure software delivery across a fast-moving, cloud-native environment. In this role, you’ll own and evolve the security tooling and automation embedded in their SDLC and CI/CD pipelines, working closely with software engineers, DevOps, and data scientists. You will help ensure security is not a final step—but an integral, continuous part of how they build and ship software.
You will:
- Embed and automate security controls across CI/CD workflows
- Lead the integration of SAST, DAST, SCA, and threat modeling tools in DevSecOps pipelines
- Collaborate with developers to enable secure coding and privacy by design
- Drive adoption of secure development standards and practices across the org
- Operate and evolve our software vulnerability management and bug bounty programs
- Work cross-functionally to identify risks and improve security posture continuously
- Support cloud-native app and ML security efforts across Azure and AWS
- Own AppSec policies, incident response processes, and related KPIs/KRIs
Key Skills Required:
- 5+ years in AppSec or DevSecOps, with strong experience in secure SDLC and CI/CD
- Hands-on knowledge of security tools like GitHub Advanced Security, Veracode, Snyk, ZAP, Burp
- Familiarity with OWASP, MITRE, CWE, and modern dev frameworks (C#, Java, Python, React)
- Knowledge of scripting languages (Python, Ruby, Rust)
- Excellent communication skills to bridge tech and business stakeholders
- Passion for building scalable security solutions that enable teams, not slow them down
Contact Detail:
Acumin Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land DevSecOps / Application Security Engineer
✨Tip Number 1
Familiarise yourself with the specific security tools mentioned in the job description, such as GitHub Advanced Security and Veracode. Having hands-on experience or even a solid understanding of these tools will give you an edge during discussions with our team.
✨Tip Number 2
Showcase your knowledge of secure coding practices and how you've implemented them in past projects. Be ready to discuss specific examples where you collaborated with developers to enhance security within CI/CD pipelines.
✨Tip Number 3
Prepare to talk about your experience with cloud-native applications, particularly in Azure and AWS. Highlight any relevant projects where you’ve integrated security measures into cloud environments, as this is crucial for the role.
✨Tip Number 4
Demonstrate your passion for security by discussing any personal projects or contributions to open-source initiatives related to AppSec or DevSecOps. This shows your commitment to the field and can set you apart from other candidates.
We think you need these skills to ace DevSecOps / Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in DevSecOps and Application Security. Focus on your hands-on knowledge of security tools and your familiarity with secure SDLC and CI/CD processes.
Craft a Compelling Cover Letter: In your cover letter, express your passion for building scalable security solutions. Mention specific projects where you have successfully integrated security into development workflows and how you collaborated with cross-functional teams.
Showcase Relevant Skills: Clearly list your technical skills related to the job description, such as experience with GitHub Advanced Security, Veracode, Snyk, and scripting languages like Python or Ruby. Use examples to demonstrate your expertise.
Highlight Communication Abilities: Since excellent communication skills are essential for this role, provide examples of how you've effectively bridged the gap between technical and business stakeholders in previous positions.
How to prepare for a job interview at Acumin
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with security tools like GitHub Advanced Security, Veracode, and Snyk. Highlight specific projects where you integrated these tools into CI/CD pipelines, demonstrating your ability to embed security controls effectively.
✨Demonstrate Collaboration Skills
Since the role involves working closely with software engineers and DevOps teams, share examples of how you've successfully collaborated in the past. Discuss how you’ve enabled secure coding practices and driven the adoption of security standards across teams.
✨Understand the Business Impact
Prepare to articulate how security initiatives can enhance business outcomes. Discuss your experience in aligning security practices with business goals, and how you can help the company maintain a strong security posture while enabling rapid software delivery.
✨Be Ready for Scenario-Based Questions
Expect questions that assess your problem-solving skills in real-world scenarios. Think about potential security threats in cloud-native environments and how you would address them, particularly in relation to Azure and AWS.
