At a Glance
- Tasks: Lead application security initiatives and embed secure practices in software development.
- Company: Join a leading enterprise client focused on cyber resilience.
- Benefits: Competitive daily rate, fully remote work, and a 9-month contract.
- Other info: Opportunity to work with cutting-edge technologies and enhance your career.
- Why this job: Make a real impact on security in modern cloud and API-driven environments.
- Qualifications: Strong experience in application security and DevSecOps required.
The predicted salary is between 54000 - 67500 £ per year.
CBTR is working with a leading enterprise client to hire an experienced Application Security Lead to own and evolve their application security capability across the full software development lifecycle. This is a senior, hands-on role focused on embedding secure-by-design principles, reducing risk exposure, and strengthening cyber resilience across modern, cloud and API-driven environments.
You’ll work at the intersection of security, engineering, and business teams, ensuring application risks are clearly understood, prioritised, and effectively managed.
Required Skills:- Strong experience in Application Security, DevSecOps, or Secure Software Engineering
- Deep understanding of OWASP Top 10 and exploitation techniques
- Hands-on experience with SAST, DAST, and SCA tools
- Experience integrating security into CI/CD and SDLC
- Cloud experience (AWS and/or Azure)
- Ability to translate technical risk into clear business impact
- Strong stakeholder management and influencing skills
- Ability to communicate complex security concepts clearly and effectively
- Experience securing cloud-native or SaaS platforms
- Understanding of AI/ML security risks
- Familiarity with Terraform, or other IaC tooling
- Knowledge of frameworks such as NIST or ISO27001
- Knowledge of authentication and authorisation frameworks (OAuth2, OIDC, SAML, RBAC/ABAC)
- Experience in large-scale enterprise & regulated environments
- CISSP
- CEH
- OSCP / OSWE
- Security+
Application Security Lead/ 9 months Contract/ Fully Remote in Manchester employer: Cloud Bridge Tech Recruitment
As a leading enterprise client, we pride ourselves on fostering a dynamic and inclusive work culture that prioritises employee growth and development. Our fully remote setup allows for flexibility while you take on a pivotal role in enhancing application security across innovative cloud and API-driven environments. With competitive compensation and a commitment to secure-by-design principles, we offer a meaningful opportunity for professionals looking to make a significant impact in the field of cybersecurity.
Contact Details:
Cloud Bridge Tech Recruitment Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Application Security Lead/ 9 months Contract/ Fully Remote in Manchester
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, attend virtual meetups, and engage in relevant forums. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your application security projects. This gives potential employers a tangible look at what you can do, especially in areas like OWASP Top 10 and secure coding practices.
✨Tip Number 3
Prepare for interviews by brushing up on your technical knowledge and soft skills. Be ready to discuss how you've integrated security into CI/CD pipelines and how you manage stakeholder expectations. Practice makes perfect!
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities that might just be the perfect fit for you. Plus, it’s a great way to ensure your application gets seen by the right people.
We think you need these skills to ace Application Security Lead/ 9 months Contract/ Fully Remote in Manchester
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Application Security Lead role. Highlight your experience with OWASP, SAST, DAST, and any cloud platforms you've worked with. We want to see how your skills align with what we're looking for!
Showcase Your Projects:Include specific projects where you've embedded secure-by-design principles or reduced risk exposure. We love seeing real-world examples of your work, so don’t hold back on the details!
Be Clear and Concise:When writing your application, keep it clear and to the point. Use straightforward language to explain complex security concepts. We appreciate clarity and want to understand your thought process easily.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss out on any updates. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at Cloud Bridge Tech Recruitment
✨Know Your Stuff
Make sure you brush up on your knowledge of Application Security, DevSecOps, and the OWASP Top 10. Be ready to discuss specific tools like SAST, DAST, and SCA, and how you've used them in past projects. This role is all about embedding secure practices, so show that you can walk the talk!
✨Speak Their Language
When discussing technical risks, remember to translate them into business impacts. Use clear, straightforward language that non-technical stakeholders can understand. This will demonstrate your ability to bridge the gap between security and business needs, which is crucial for this position.
✨Showcase Your Hands-On Experience
Be prepared to share specific examples of how you've integrated security into CI/CD pipelines or the software development lifecycle. Highlight any cloud experience you have, especially with AWS or Azure, and how you've secured cloud-native applications. Real-world examples will make your expertise stand out.
✨Engage with Stakeholders
This role requires strong stakeholder management skills, so think about how you've influenced teams in the past. Prepare to discuss how you've communicated complex security concepts effectively to different audiences. Showing that you can engage and collaborate with various teams will be a big plus!
