Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our Cyber Security team to embed security in software development and drive DevSecOps practices.
- Company: Insight Investment, a leading asset manager with a collaborative culture.
- Benefits: Inclusive workplace, competitive salary, and opportunities for professional growth.
- Other info: Dynamic environment with a commitment to diversity and inclusion.
- Why this job: Make a real impact on application security and work with cutting-edge technologies.
- Qualifications: Strong background in application security and secure coding practices.
The predicted salary is between 60000 - 80000 £ per year.
Insight Investment is looking for an Application Security Architect to join our Cyber Security team in Manchester. This role focuses on embedding security into the software development lifecycle and driving DevSecOps practices across engineering teams. The ideal candidate will have a strong technical background in application security, secure coding, and automation within CI/CD pipelines.
Role Responsibilities
- Collaborate with development, DevOps, and architecture teams to integrate security into the SDLC.
- Design and implement secure coding practices and threat modelling processes.
- Lead the integration of security tools into CI/CD pipelines (e.g., SAST, DAST, SCA, IAST).
- Conduct security assessments of applications, APIs, and microservices.
- Develop and maintain security standards, guidelines, and automation scripts.
- Provide guidance on secure design patterns and architecture decisions.
- Promote a DevSecOps culture and continuous security improvement across development and architecture teams.
Experience Required
- Strong understanding of application security principles (e.g., OWASP Top 10, CWE).
- Experience with secure coding in languages such as Java, Python, JavaScript, or .NET (preferably .NET and Python).
- Hands-on experience with one or more security tools:
- Static Analysis (SAST): Veracode (preferable), Checkmarx, Fortify, etc.
- Dynamic Analysis (DAST): Veracode (preferable), Burp Suite, OWASP ZAP, etc.
- Software Composition Analysis (SCA): Veracode (preferable), Snyk, Black Duck, etc.
- Container Security: Aqua Security (preferable), Prisma Cloud, etc.
Insight is committed to being an inclusive employer and encourages applications from all suitably qualified applicants irrespective of background, circumstances, age, disability, gender identity, ethnicity, religion or belief and sexual orientation. If you are a candidate with a disability, or are assisting a candidate with a disability, and require an accommodation to apply for one of our jobs, please email us at TalentAcquisition@InsightInvestment.com.
About Insight Investment: Insight Investment is a leading asset manager focused on designing investment solutions to meet its clients' needs. Founded in 2002, Insight's collaborative approach has delivered both investment performance and growth in assets under management. Insight manages assets across its core liability-driven investment, risk management, full-spectrum fixed income, currency and absolute return capabilities. Insight has a global network of operations in the UK, Ireland, Germany, US, Japan and Australia. More information about Insight Investment can be found at: https://www.insightinvestment.com/corporate/.
Application Security Specialist (Manchester) employer: Insight Investment Group
Contact Detail:
Insight Investment Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Application Security Specialist (Manchester)
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those at Insight Investment. A friendly chat can open doors that a CV just can't.
✨Tip Number 2
Show off your skills! If you’ve got a portfolio or GitHub with projects related to application security, make sure to highlight them. It’s a great way to demonstrate your expertise beyond the written word.
✨Tip Number 3
Prepare for the interview by brushing up on the OWASP Top 10 and secure coding practices. Be ready to discuss how you’d integrate security into the SDLC and share your thoughts on DevSecOps.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining the team.
We think you need these skills to ace Application Security Specialist (Manchester)
Some tips for your application 🫡
Show Off Your Skills: Make sure to highlight your technical background in application security and secure coding. We want to see your experience with tools like SAST, DAST, and CI/CD pipelines, so don’t hold back!
Tailor Your Application: Take a moment to customise your application for the role. Mention how your experience aligns with our focus on embedding security into the software development lifecycle. It shows us you’re genuinely interested!
Be Clear and Concise: Keep your application straightforward and to the point. We appreciate clarity, so make sure your skills and experiences are easy to read and understand. Bullet points can work wonders!
Apply Through Our Website: Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy!
How to prepare for a job interview at Insight Investment Group
✨Know Your Security Principles
Make sure you brush up on application security principles, especially the OWASP Top 10 and CWE. Being able to discuss these concepts confidently will show that you have a solid foundation in application security.
✨Showcase Your Technical Skills
Prepare to talk about your experience with secure coding in languages like .NET and Python. Bring examples of how you've implemented secure coding practices or integrated security tools into CI/CD pipelines in your previous roles.
✨Familiarise Yourself with Tools
Get hands-on with the security tools mentioned in the job description, such as Veracode for SAST and DAST. If you can demonstrate familiarity with these tools during the interview, it’ll give you a significant edge.
✨Emphasise Collaboration
Since the role involves working closely with development and DevOps teams, be ready to discuss your experience in promoting a DevSecOps culture. Share specific examples of how you've collaborated with teams to embed security into the software development lifecycle.