Cyber Security Test Engineer in Birmingham

We are looking for an experienced application security engineer who will champion a shift-left security philosophy by integrating automated security analysis into CI/CD pipelines SAST scanning, GitHub Actions, and SCA, working closely with development teams to help guide threat modelling sessions and to identify, remediate, and prevent vulnerabilities while ensuring compliance with various security frameworks such as NIST and ISO27001.

As an application security engineer, you will be responsible for embedding security into the software development lifecycle (SDLC) across the organisation’s .NET, Java, and Node.js technology stacks. This role champions a shift-left security philosophy by integrating automated security analysis into CI/CD pipelines SonarQube, GitHub Actions, and SCA. You will also be responsible for internal security testing and re-testing of issues found from previous rounds of security testing. Additionally, you will need an understanding of AI and the mechanisms used to securely embed AI within applications.

What You Will Have:

• 3+ years of experience in application security, software engineering, or DevSecOps.
• Hands-on experience securing applications built with either .NET, Java, and Node.js.
• Experience working with SAST scanners (multi-project, multi-language).
• Experience managing SCA tooling across large codebases.
• A good working knowledge of GitHub Actions CI/CD pipelines and GitHub Advanced Security features.
• A good understanding of common vulnerability classes (injection, broken access control, cryptographic failures, SSRF, etc.).

What We Do For You:

• Wellbeing focused – Our people are our greatest assets, and ensuring everyone feels their best self to come to work is integral.
• Annual Leave – 20 days of annual leave, plus public holidays.
• Employee Assistance Programme – Free advice, support, and confidential counselling available 24/7.
• Personal Growth - Regardless of where you are at in your career, we’re committed to enabling your growth personally and professionally.
• Development Programmes – From Future Managers to Leadership Training, our development programmes help you get where you need to go.
• Online Learning Platform: SkillsHub! - Learning at your fingertips, anytime from anywhere.
• Life Insurance - 3x annual salary.
• Personal Accident Insurance - providing cover in the event of serious injury/illness.
• Performance Bonus – Our Group-wide bonus scheme enables you to reap the rewards of your success.

Who We Are:

At OneAdvanced, we are at the forefront of delivering sector-focused technology solutions that simplify complexity, drive meaningful progress, and help build a fairer, more inclusive society. We deliver SaaS workflow applications and IT services that power organisations across Education, Government, Healthcare, Legal, Manufacturing, Housing, Retail, and more. OneAdvanced is one of the UK’s largest business software and services companies. Based in Birmingham (The Mailbox), operating across the UK, Ireland, India, and Australia. Our secure, scalable platform, including OneAdvanced AI, our private AI service for UK organisations, powers connectivity and innovation across critical sectors. We strive to create an inclusive workplace that drives innovation and collaboration, championing diverse perspectives and ideas. Our Environmental, Social and Governance (ESG) strategy is embedded in everything we do, guiding us to create meaningful impact for our people, our customers and the planet. Join us and become part of a team that’s powering the world of work and making a real difference.