At a Glance
- Tasks: Conduct security assessments and embed secure practices in software delivery.
- Company: Leading international organisation with a high-performing security team.
- Benefits: Competitive daily rate, hybrid working, and opportunities for professional growth.
- Other info: Ideal for seasoned professionals looking to advance their career in cyber security.
- Why this job: Join a dynamic team and make a real impact on application security.
- Qualifications: Strong experience in Application Security, DevSecOps, and secure coding practices.
We are supporting a leading international organisation in the search for a Senior Cyber Security Analyst to join a high-performing security engineering and assurance team. This role is ideal for a consultant with a strong background in Application Security, DevSecOps, Secure SDLC, Threat Modelling, and Cloud Security, who can work closely with engineering teams to embed security into modern software delivery environments.
The successful consultant will operate across cloud-native platforms, CI/CD pipelines, APIs, containers, and microservices architectures, helping drive secure-by-design principles across enterprise-scale platforms.
Key Responsibilities- Perform security risk assessments, secure design reviews, and threat modelling exercises for applications, APIs, and cloud platforms.
- Define and implement secure-by-design principles across software engineering and DevOps teams.
- Embed security controls into CI/CD pipelines using modern DevSecOps practices.
- Lead and support SAST, DAST, SCA, and container security integration activities.
- Conduct application and infrastructure security assessments aligned to OWASP, NIST, and industry best practices.
- Work closely with development teams to triage vulnerabilities and support remediation activities.
- Define security requirements for modern application architectures including APIs, Microservices, Kubernetes / Containers, and Cloud-native platforms.
- Support secure architecture reviews across AWS and/or Azure environments.
- Collaborate with stakeholders across Security, Engineering, DevOps, Risk, and Architecture teams.
- Support vulnerability management, security governance, and secure delivery processes.
We are looking for consultants with strong experience across several of the following areas:
- Application Security & Secure SDLC
- OWASP Top 10 / ASVS
- Secure coding practices
- Threat modelling (STRIDE / MITRE ATT&CK)
- Security architecture and design reviews
- Vulnerability management and remediation
- Secure Software Development Lifecycle (SSDLC)
- DevSecOps & CI/CD Security
- Integration of security tooling into CI/CD pipelines
Experience with:
- GitHub
- GitLab
- Jenkins
- Azure DevOps
Hands-on experience with:
- SAST
- DAST
- SCA
- Secrets scanning
- Container security
- Cloud & Platform Security
- AWS and/or Azure security
- Kubernetes / Docker / container security
- API security
- IAM / Identity Federation / SSO
- WAF and cloud-native security tooling
- Infrastructure-as-Code security (Terraform / Checkov / tfsec)
Security Tooling
Experience with tools such as:
- SonarQube
- Checkmarx
- Veracode
- Fortify
- OWASP ZAP
- Burp Suite
- Snyk
- Aqua
- Wiz
- Prisma Cloud
- Defender for Cloud
- Sentinel
- 8-15+ years in Cyber Security
- Strong focus on Application Security and DevSecOps
- Experience working closely with engineering and platform teams
- Strong stakeholder engagement and communication skills
- Experience within regulated or enterprise environments preferred
- Financial services, government, or large-scale enterprise experience highly desirable
- CISSP
- SABSA
- GIAC
- ISO 27001
- Cloud security certifications (AWS / Azure)
Cyber Security Analyst - employer: Salt
Join a leading international organisation as a Senior Cyber Security Analyst in London, where you will be part of a high-performing security engineering and assurance team. This role offers a hybrid working model, allowing for flexibility while collaborating with talented professionals to embed security into modern software delivery environments. With a strong focus on employee growth, the company provides opportunities for continuous learning and development in cutting-edge technologies, making it an excellent employer for those seeking meaningful and rewarding careers in cyber security.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Analyst -
✨Network Like a Pro
Get out there and connect with people in the industry! Attend meetups, webinars, or even local events. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Show Off Your Skills
Don’t just talk about your experience; demonstrate it! Create a portfolio showcasing your projects, especially those related to Application Security and DevSecOps. This will give potential employers a clear view of what you can bring to the table.
✨Ace the Interview
Prepare for common interview questions but also be ready to discuss specific scenarios from your past work. Use the STAR method (Situation, Task, Action, Result) to structure your answers and highlight your problem-solving skills.
✨Apply Through Our Website
Make sure to check out our website for the latest job openings. Applying directly through us not only shows your interest but also helps you stand out in the application process. We’re here to help you land that dream job!
We think you need these skills to ace Cyber Security Analyst -
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the role of Senior Cyber Security Analyst. Highlight your experience in Application Security, DevSecOps, and any relevant tools you've used. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how your background makes you a perfect fit for our team. Don't forget to mention specific projects or achievements that relate to the job.
Showcase Relevant Experience:When filling out your application, be sure to showcase your experience with SAST, DAST, and secure coding practices. We love seeing real-world examples of how you've embedded security into software delivery environments.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It helps us keep track of applications and ensures you get all the updates directly from us. Plus, it shows you're keen on joining our team!
How to prepare for a job interview at Salt
✨Know Your Stuff
Make sure you brush up on your knowledge of Application Security, DevSecOps, and Secure SDLC. Be ready to discuss specific tools like SAST and DAST, and how you've used them in past projects. This shows you're not just familiar with the concepts but have practical experience.
✨Showcase Your Problem-Solving Skills
Prepare to talk about real-world scenarios where you've identified vulnerabilities and implemented solutions. Use the STAR method (Situation, Task, Action, Result) to structure your answers, making it easy for the interviewer to see your thought process and impact.
✨Understand the Company’s Environment
Research the organisation's tech stack and security practices. Knowing their cloud platforms (AWS or Azure) and how they integrate security into their CI/CD pipelines will help you tailor your responses and demonstrate your genuine interest in the role.
✨Engage with Questions
Prepare insightful questions about their security challenges and team dynamics. This not only shows your enthusiasm but also helps you gauge if the company culture aligns with your values. Ask about their approach to secure design and how they handle vulnerability management.
