At a Glance
- Tasks: Integrate security into development processes and support secure coding practices.
- Company: Join a leading tech firm focused on innovation and security.
- Benefits: Learning opportunities, performance feedback, and wellbeing resources.
- Other info: Dynamic environment with opportunities for growth in the gaming industry.
- Why this job: Make a real impact by securing applications and collaborating with diverse teams.
- Qualifications: Strong communication skills and knowledge of application security concepts required.
The predicted salary is between 60000 - 80000 £ per year.
What you’ll do
- Development and Application Security‑by‑Design
- Integrate and operate application security controls within CI/CD pipelines, including: Static Application Security Testing (SAST); Dynamic Application Security Testing (DAST); Software Composition Analysis (SCA); Secrets detection and dependency risk scanning
- Support secure SDLC practices such as: Branch protection and quality gates; Secure build and release controls; Artifact integrity and validation checks
- Assist with threat modelling and secure design reviews in collaboration with architecture teams
- Support developers in vulnerability triage and remediation
- Tune security tools to reduce false positives and developer friction
- Support audit, compliance, and evidence generation activities
- Participate in security incident investigation related to application flaws
- Ensure secure, compliant approaches are the default and easiest options for development teams
- Configure and maintain security tooling integrations within CI/CD systems (e.g. GitHub Actions, GitLab CI, Jenkins, Azure DevOps) under agreed architectural standards
- Ensure security controls operate consistently across teams and repositories
Governance, Risk & Assurance
- Define and document DevSec security standards, patterns, and decisions
- Provide evidence and control mappings to support audits, risk assessments, and regulatory reviews
- Identify and track DevSec‑related risks and technical debt, driving remediation through process improvements rather than manual controls
- Stakeholder collaboration to influence security outcomes through leadership
What you’ll bring (Qualifications)
- Clear, confident communication (written and verbal), ability to breakdown complex ideas
- A collaborative mindset, working with cross‑functional teams to hit shared goals
- Strong organizational skills and the ability to manage multiple projects
- Exceptional attention to detail and a commitment to high‑quality work
- Adaptability in fast‑moving environments
- Strong grounding in application security concepts; Secure coding knowledge (OWASP Top 10, API security, dependency risk)
- Strong knowledge of SAST, DAST, SCA, and software supply‑chain security concepts
- Hands‑on expertise with containers and orchestration platforms (e.g. Docker, Kubernetes)
- Demonstrated experience implementing container security across build, registry, and runtime
- Proven experience securing CI/CD pipelines and developer toolchains
- Knowledge of Infrastructure as Code (Terraform, Bicep, CloudFormation, etc.); Secrets and key management
- Cloud identity and access management; Solid understanding of information security frameworks (e.g. ISO 27001)
- Experience operating in regulated or audited environments; Able to design controls that are auditable without slowing delivery
Desirable skills
- In-depth knowledge of sports betting markets, odds calculation, betting types and market trends
- Experience in online gaming or casino industry with understanding of player behaviour and regulations
- Familiarity with gambling regulations and compliance requirements; experience with audits or regulatory reviews
- Experience developing and executing customer retention strategies
- Experience operating at scale in multi‑team or multinational environments
What you’ll get
- Learning and development programmes to level up fast
- Performance feedback to support your development
- Employee Assistance Programme and wellbeing resources
DevSec Engineer employer: Betway Group
As a DevSec Engineer at our company, you'll thrive in a dynamic and collaborative work culture that prioritises security and innovation. We offer robust learning and development programmes to enhance your skills, alongside performance feedback to support your growth. Located in a vibrant area, our team enjoys a supportive environment with access to wellbeing resources, making it an excellent place for meaningful and rewarding employment.
StudySmarter Expert Advice🤫
We think this is how you could land DevSec Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect on LinkedIn. You never know who might have the inside scoop on a DevSec Engineer role that’s not even advertised yet.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects related to application security and CI/CD pipelines. This gives potential employers a taste of what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on common DevSec concepts and tools like SAST, DAST, and container security. Practice explaining complex ideas simply, as clear communication is key in this role.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace DevSec Engineer
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter to highlight your experience with application security and CI/CD pipelines. We want to see how your skills align with the role, so don’t hold back on showcasing your relevant projects!
Show Off Your Communication Skills:Since clear communication is key for this role, use your written application to demonstrate your ability to break down complex ideas. Keep it concise and engaging – we love a good story that showcases your expertise!
Highlight Collaboration Experience:We’re all about teamwork here at StudySmarter, so make sure to mention any cross-functional projects you’ve worked on. Share examples of how you’ve collaborated with different teams to achieve shared goals in your application.
Apply Through Our Website:Don’t forget to submit your application through our website! It’s the best way for us to keep track of your application and ensure it gets the attention it deserves. Plus, it shows you’re keen to join our team!
How to prepare for a job interview at Betway Group
✨Know Your Security Tools
Make sure you’re well-versed in the security tools mentioned in the job description, like SAST, DAST, and SCA. Be ready to discuss how you've used these tools in past projects and how they can be integrated into CI/CD pipelines.
✨Showcase Your Collaboration Skills
Since this role involves working with cross-functional teams, prepare examples of how you've successfully collaborated with others. Highlight your communication skills and how you’ve influenced security outcomes through teamwork.
✨Demonstrate Your Problem-Solving Ability
Be prepared to discuss specific instances where you’ve tackled security vulnerabilities or improved processes. Use the STAR method (Situation, Task, Action, Result) to structure your answers and show your analytical thinking.
✨Stay Updated on Compliance Standards
Familiarise yourself with relevant compliance frameworks like ISO 27001 and any gambling regulations if applicable. Being able to discuss how you’ve implemented these standards in previous roles will show your commitment to security and compliance.
