Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Embed AppSec in CI/CD, scale automation, and enable secure software delivery.
- Company: Join a leading retail and digital brand with a focus on innovation.
- Benefits: Hybrid work model, competitive salary, and opportunities for professional growth.
- Why this job: Make a real impact on application security in a dynamic environment.
- Qualifications: 3+ years in application security with expertise in key tools and scripting.
- Other info: Collaborative culture with strong emphasis on teamwork and communication.
The predicted salary is between 36000 - 60000 £ per year.
We’re partnering with a leading retail & digital brand to hire a DevSecOps Engineer who’ll embed AppSec across modern CI/CD—scaling automation, owning the tooling stack and enabling engineers to ship secure software at pace.
Responsibilities
- Focused on application security initiatives across cloud and on-premises environments, employing a diverse suite of tools including Semgrep for SAST, Snyk for SCA, GHAS for secret scanning, Burp Suite for DAST, and scripting for automation.
- Forge partnerships with external vendors to optimize and seamlessly integrate security tools into our application security workflow, ensuring comprehensive coverage and operational efficiency.
- Drive the seamless integration of application security processes into development pipelines, leveraging Azure DevOps (ADO), GitHub Actions, and similar tools for streamlined automation.
- Actively contribute to the formulation and enforcement of application security policies and procedures, utilizing advanced tool capabilities to mitigate risks effectively.
- Engage with internal stakeholders to foster awareness and understanding of application security measures, emphasizing the pivotal role of tooling and automation in mitigating vulnerabilities.
Essential
- A minimum of 3 years of hands-on experience in application security, with a track record of leadership or significant contributions in similar roles.
- Proficiency in Semgrep for SAST, Snyk for SCA, GHAS for secret scanning, Burp Suite for DAST, and automation scripting.
- Understanding of application security principles and best practices.
- Experience integrating and optimizing security tools within development workflows, particularly within Azure DevOps and GitHub Actions environments.
- Strong analytical and problem-solving skills.
- Excellent communication and collaboration abilities.
- Ability to work independently and within teams in a dynamic environment.
DevSecOps Engineer - Hybrid 1 day a week in London in Slough employer: InfoSec People Ltd
Contact Detail:
InfoSec People Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land DevSecOps Engineer - Hybrid 1 day a week in London in Slough
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at meetups. A friendly chat can lead to opportunities that aren’t even advertised yet.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repo showcasing your projects, especially those involving tools like Semgrep and Snyk. This gives potential employers a taste of what you can do.
✨Tip Number 3
Prepare for interviews by brushing up on common DevSecOps scenarios. Think about how you’d integrate security into CI/CD pipelines and be ready to discuss your past experiences with specific tools.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive!
We think you need these skills to ace DevSecOps Engineer - Hybrid 1 day a week in London in Slough
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the skills and experiences that match the DevSecOps role. Highlight your hands-on experience with tools like Semgrep, Snyk, and Burp Suite, as well as any leadership roles you've had in application security.
Craft a Compelling Cover Letter: Use your cover letter to tell us why you're passionate about application security. Share specific examples of how you've integrated security into CI/CD pipelines and how you’ve collaborated with teams to enhance security measures.
Showcase Your Problem-Solving Skills: In your application, don’t just list your skills—demonstrate them! Provide examples of challenges you've faced in application security and how you tackled them using automation and tooling.
Apply Through Our Website: We encourage you to apply directly through our website for the best chance of getting noticed. It’s the easiest way for us to see your application and get you on the path to joining our team!
How to prepare for a job interview at InfoSec People Ltd
✨Know Your Tools Inside Out
Make sure you’re well-versed in the tools mentioned in the job description, like Semgrep, Snyk, and Burp Suite. Be ready to discuss how you've used these tools in past projects and how they can be integrated into CI/CD pipelines.
✨Showcase Your Problem-Solving Skills
Prepare to share specific examples of challenges you've faced in application security and how you tackled them. This will demonstrate your analytical skills and ability to think on your feet, which are crucial for this role.
✨Communicate Clearly and Effectively
Since collaboration is key, practice explaining complex security concepts in simple terms. This will show that you can engage with both technical and non-technical stakeholders, making you a valuable asset to any team.
✨Understand the Company’s Security Culture
Research the company’s approach to application security and be prepared to discuss how you can contribute to their existing policies and procedures. Showing that you align with their values will set you apart from other candidates.
