Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Drive DevSecOps initiatives and embed security in software delivery.
- Company: Join a niche SaaS tech company focused on secure software solutions.
- Benefits: Enjoy remote work flexibility and the chance to shape security practices.
- Why this job: Be part of a fast-paced environment that values security as a core principle.
- Qualifications: 5+ years in AppSec or DevSecOps with hands-on security tool experience.
- Other info: Work collaboratively with diverse teams to enhance security posture.
The predicted salary is between 48000 - 72000 £ per year.
Location: Remote – UK or EMEA based
6 months+ Contract
Niche SaaS Tech company are seeking a Senior DevSecOps / Application Security Engineer to champion and drive their DevSecOps initiatives—shaping secure software delivery across a fast-moving, cloud-native environment. In this role, you’ll own and evolve the security tooling and automation embedded in their SDLC and CI/CD pipelines, working closely with software engineers, DevOps, and data scientists. You will help ensure security is not a final step—but an integral, continuous part of how they build and ship software.
You will:
- Embed and automate security controls across CI/CD workflows
- Lead the integration of SAST, DAST, SCA, and threat modeling tools in DevSecOps pipelines
- Collaborate with developers to enable secure coding and privacy by design
- Drive adoption of secure development standards and practices across the org
- Operate and evolve our software vulnerability management and bug bounty programs
- Work cross-functionally to identify risks and improve security posture continuously
- Support cloud-native app and ML security efforts across Azure and AWS
- Own AppSec policies, incident response processes, and related KPIs/KRIs
Key Skills Required:
- 5+ years in AppSec or DevSecOps, with strong experience in secure SDLC and CI/CD
- Hands-on knowledge of security tools like GitHub Advanced Security, Veracode, Snyk, ZAP, Burp
- Familiarity with OWASP, MITRE, CWE, and modern dev frameworks (C#, Java, Python, React)
- Knowledge of scripting languages (Python, Ruby, Rust)
- Excellent communication skills to bridge tech and business stakeholders
- Passion for building scalable security solutions that enable teams, not slow them down
DevSecOps / Application Security Engineer employer: Acumin
Contact Detail:
Acumin Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land DevSecOps / Application Security Engineer
✨Tip Number 1
Familiarise yourself with the specific security tools mentioned in the job description, such as GitHub Advanced Security and Veracode. Having hands-on experience or even a solid understanding of these tools will give you an edge during discussions with our team.
✨Tip Number 2
Showcase your knowledge of secure coding practices and how you've implemented them in past projects. Be ready to discuss real-world examples where you successfully integrated security into the SDLC and CI/CD pipelines.
✨Tip Number 3
Prepare to demonstrate your ability to communicate complex security concepts to non-technical stakeholders. This role requires collaboration across various teams, so highlighting your communication skills will be crucial.
✨Tip Number 4
Research our company’s current security posture and any recent initiatives we've undertaken. Being knowledgeable about our work will not only impress us but also help you tailor your approach during the interview process.
We think you need these skills to ace DevSecOps / Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in AppSec and DevSecOps, particularly your hands-on knowledge of security tools and secure SDLC practices. Use specific examples that demonstrate your ability to embed security controls in CI/CD workflows.
Craft a Compelling Cover Letter: In your cover letter, express your passion for building scalable security solutions. Mention how your skills align with the company's needs, especially your experience with cloud-native environments and collaboration with cross-functional teams.
Showcase Relevant Projects: If you have worked on projects involving SAST, DAST, or threat modeling tools, be sure to include these in your application. Highlight your role in these projects and the impact they had on security posture.
Highlight Communication Skills: Since excellent communication is key for this role, provide examples of how you've successfully bridged the gap between technical and business stakeholders in previous positions. This will demonstrate your ability to drive adoption of secure development standards across the organisation.
How to prepare for a job interview at Acumin
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with security tools like GitHub Advanced Security, Veracode, and Snyk. Highlight specific projects where you integrated these tools into CI/CD pipelines, demonstrating your ability to embed security controls effectively.
✨Demonstrate Collaboration Skills
Since the role involves working closely with software engineers and DevOps teams, share examples of how you've successfully collaborated in the past. Discuss how you’ve enabled secure coding practices and driven the adoption of security standards across teams.
✨Understand the Company’s Security Posture
Research the company’s current security initiatives and challenges. Be ready to discuss how you can contribute to their existing AppSec policies and incident response processes, showing that you’re proactive about improving their security posture.
✨Communicate Clearly and Effectively
Excellent communication skills are crucial for bridging tech and business stakeholders. Practice explaining complex security concepts in simple terms, as this will demonstrate your ability to convey important information to non-technical team members.
