At a Glance
- Tasks: Lead application security initiatives and embed secure practices in software development.
- Company: Join a leading enterprise client focused on cyber resilience.
- Benefits: Competitive daily rate, fully remote work, and a 9-month contract.
- Other info: Work with cutting-edge technologies and enhance your career in a dynamic environment.
- Why this job: Make a real impact on security in modern cloud and API environments.
- Qualifications: Strong experience in Application Security and DevSecOps required.
CBTR is working with a leading enterprise client to hire an experienced Application Security Lead to own and evolve their application security capability across the full software development lifecycle. This is a senior, hands-on role focused on embedding secure-by-design principles, reducing risk exposure, and strengthening cyber resilience across modern, cloud and API-driven environments. You’ll work at the intersection of security, engineering, and business teams, ensuring application risks are clearly understood, prioritised, and effectively managed.
Required Skills:
- Strong experience in Application Security, DevSecOps, or Secure Software Engineering
- Deep understanding of OWASP Top 10 and exploitation techniques
- Hands-on experience with SAST, DAST, and SCA tools
- Experience integrating security into CI/CD and SDLC
- Cloud experience (AWS and/or Azure)
- Ability to translate technical risk into clear business impact
- Strong stakeholder management and influencing skills
- Ability to communicate complex security concepts clearly and effectively
- Experience securing cloud-native or SaaS platforms
- Understanding of AI/ML security risks
- Familiarity with Terraform, or other IaC tooling
- Knowledge of frameworks such as NIST or ISO27001
- Knowledge of authentication and authorisation frameworks (OAuth2, OIDC, SAML, RBAC/ABAC)
- Experience in large-scale enterprise & regulated environments
Desirable Certifications:
- CISSP
- CEH
- OSCP / OSWE
- Security+
Application Security Lead/ 9 months Contract/ Fully Remote in Portsmouth employer: Cloud Bridge Tech Recruitment
At CBTR, we pride ourselves on being an exceptional employer that values innovation and collaboration. Our fully remote work culture empowers you to thrive in a flexible environment while leading the charge in application security for a prestigious enterprise client. With a strong focus on professional development and a commitment to embedding secure practices across the software development lifecycle, you'll find ample opportunities for growth and meaningful contributions to our mission of enhancing cyber resilience.
Contact Details:
Cloud Bridge Tech Recruitment Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Application Security Lead/ 9 months Contract/ Fully Remote in Portsmouth
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, attend virtual meetups, and engage in relevant online communities. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your application security projects. This gives potential employers a tangible look at what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on common application security scenarios and case studies. Be ready to discuss how you've tackled security challenges in past roles, especially in cloud environments.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities that might be perfect for you. Plus, it’s a great way to ensure your application gets seen by the right people.
We think you need these skills to ace Application Security Lead/ 9 months Contract/ Fully Remote in Portsmouth
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Application Security Lead role. Highlight your experience with OWASP Top 10, DevSecOps, and any relevant cloud experience. We want to see how your skills align with what we're looking for!
Showcase Your Projects:Include specific projects where you've embedded secure-by-design principles or reduced risk exposure. This gives us a clear picture of your hands-on experience and how you tackle real-world challenges in application security.
Be Clear and Concise:When writing your cover letter, keep it clear and to the point. Explain how your background fits the role and why you're excited about working with us at StudySmarter. We love enthusiasm!
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. We can’t wait to hear from you!
How to prepare for a job interview at Cloud Bridge Tech Recruitment
✨Know Your Stuff
Make sure you brush up on your knowledge of Application Security, especially the OWASP Top 10. Be ready to discuss how you've applied secure-by-design principles in past projects and how you’ve reduced risk exposure in cloud environments.
✨Showcase Your Hands-On Experience
Prepare to talk about your hands-on experience with SAST, DAST, and SCA tools. Have specific examples ready that demonstrate how you integrated security into CI/CD pipelines and the impact it had on the development lifecycle.
✨Communicate Clearly
Practice explaining complex security concepts in simple terms. You’ll need to show that you can translate technical risks into business impacts, so think of examples where you’ve successfully communicated these ideas to non-technical stakeholders.
✨Familiarise Yourself with Relevant Frameworks
Brush up on frameworks like NIST or ISO27001, and be prepared to discuss how they relate to your work. If you have experience with Terraform or other IaC tools, make sure to highlight that as well, as it shows your versatility in securing modern applications.
