At a Glance
- Tasks: Conduct security assessments and embed secure practices in software delivery.
- Company: Leading international organisation with a high-performing security team.
- Benefits: Competitive daily rate, hybrid work model, and opportunity to work on cutting-edge security projects.
- Other info: Ideal for those passionate about secure design and cloud security.
- Why this job: Join a dynamic team and make a real impact on application security and DevSecOps.
- Qualifications: 8-15+ years in Cyber Security with strong Application Security focus.
We are supporting a leading international organisation in the search for a Senior Cyber Security Analyst to join a high‑performing security engineering and assurance team. This role is ideal for a consultant with a strong background in Application Security, DevSecOps, Secure SDLC, Threat Modelling, and Cloud Security, who can work closely with engineering teams to embed security into modern software delivery environments. The successful consultant will operate across cloud‑native platforms, CI/CD pipelines, APIs, containers, and microservices architectures, helping drive secure‑by‑design principles across enterprise‑scale platforms.
Key Responsibilities
- Perform security risk assessments, secure design reviews, and threat modelling exercises for applications, APIs, and cloud platforms.
- Define and implement secure‑by‑design principles across software engineering and DevOps teams.
- Embed security controls into CI/CD pipelines using modern DevSecOps practices.
- Lead and support SAST, DAST, SCA, and container security integration activities.
- Conduct application and infrastructure security assessments aligned to OWASP, NIST, and industry best practices.
- Work closely with development teams to triage vulnerabilities and support remediation activities.
- Define security requirements for modern application architectures including APIs, Microservices, Kubernetes/Containers, Cloud‑native platforms.
- Support secure architecture reviews across AWS and/or Azure environments.
- Collaborate with stakeholders across Security, Engineering, DevOps, Risk, and Architecture teams.
- Support vulnerability management, security governance, and secure delivery processes.
Required Skills & Experience
- Application Security & Secure SDLC.
- OWASP Top 10 / ASVS.
- Secure coding practices.
- Threat modelling (STRIDE / MITRE ATT&CK).
- Security architecture and design reviews.
- Vulnerability management and remediation.
- Secure Software Development Lifecycle (SSDLC).
- DevSecOps & CI/CD.
- Security integration of security tooling into CI/CD pipelines.
- Experience with: GitHub, GitLab, Jenkins, Azure DevOps.
- Hands‑on experience with: SAST, DAST, SCA, Secrets scanning, Container security, Cloud & Platform Security, AWS and/or Azure security, Kubernetes / Docker / container security, API security, IAM / Identity Federation / SSO, WAF and cloud‑native security tooling, Infrastructure‑as‑Code security (Terraform / Checkov / tfsec).
- Security tooling experience with: SonarQube, Checkmarx, Veracode, Fortify, OWASP ZAP, Burp Suite, Snyk, Aqua, Wiz, Prisma Cloud, Defender for Cloud, Sentinel.
Ideal Background
- 8–15+ years in Cyber Security.
- Strong focus on Application Security and DevSecOps.
- Experience working closely with engineering and platform teams.
- Strong stakeholder engagement and communication skills.
- Experience within regulated or enterprise environments (Financial services, government, or large‑scale enterprise) highly desirable.
- Certifications desirable: CISSP, SABSA, GIAC, ISO 27001, Cloud security certifications (AWS / Azure).
Rates depend on experience and client requirements.
Cyber Security Analyst – employer: Salt Digital Recruitment
Join a leading international organisation in London as a Senior Cyber Security Analyst, where you will be part of a high-performing security engineering and assurance team. This role offers a dynamic hybrid work environment, competitive daily rates, and the opportunity to work on cutting-edge security practices within cloud-native platforms. With a strong emphasis on employee growth and collaboration, you'll have the chance to enhance your skills while contributing to secure software delivery across enterprise-scale platforms.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Analyst –
✨Network Like a Pro
Get out there and connect with people in the industry! Attend meetups, webinars, or even local events. The more you engage with others, the better your chances of hearing about job openings that might not even be advertised.
✨Show Off Your Skills
Don’t just list your skills on your CV; demonstrate them! Create a portfolio or GitHub repository showcasing your projects, especially those related to Application Security and DevSecOps. This gives potential employers a tangible look at what you can do.
✨Ace the Interview
Prepare for interviews by practising common questions and scenarios related to Cyber Security. Be ready to discuss your experience with SAST, DAST, and secure coding practices. Confidence is key, so rehearse until you feel comfortable!
✨Apply Through Our Website
Make sure to apply through our website for the best chance at landing that role! We’re always on the lookout for talented individuals like you, and applying directly helps us see your application faster.
We think you need these skills to ace Cyber Security Analyst –
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the role of Senior Cyber Security Analyst. Highlight your experience in Application Security, DevSecOps, and any relevant tools you've used. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how your background makes you a perfect fit for our team. Keep it concise but impactful – we love a good story!
Showcase Relevant Projects:If you've worked on projects related to secure design or threat modelling, make sure to mention them. We’re keen to see real-world examples of how you've embedded security into software delivery environments.
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at Salt Digital Recruitment
✨Know Your Stuff
Make sure you brush up on your knowledge of Application Security, DevSecOps, and Secure SDLC. Be ready to discuss specific tools like SAST, DAST, and how they fit into CI/CD pipelines. The more you can demonstrate your expertise, the better!
✨Showcase Your Experience
Prepare to share concrete examples from your past roles where you've successfully implemented secure design principles or conducted threat modelling. Use the STAR method (Situation, Task, Action, Result) to structure your answers and make them impactful.
✨Engage with the Team
Since this role involves collaboration with various teams, be prepared to discuss how you've worked with engineering and DevOps teams in the past. Highlight your communication skills and how you’ve managed stakeholder engagement effectively.
✨Ask Smart Questions
At the end of the interview, don’t forget to ask insightful questions about their security practices, team dynamics, or upcoming projects. This shows your genuine interest in the role and helps you assess if the company is the right fit for you.
