Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security assessments and enhance application security across development teams.
- Company: Join a dynamic organization focused on strengthening security in software applications.
- Benefits: Enjoy hybrid working options and competitive pay of £800.00 inside IR35.
- Why this job: Make a real impact on security culture while working with cutting-edge tools and technologies.
- Qualifications: Proven experience in application security, SAST, DAST, and relevant programming languages required.
- Other info: Active SC Clearance is mandatory for this role.
The predicted salary is between 48000 - 72000 £ per year.
DAS Security Lead (SC Cleared)
As the DAS Security Lead, you will be responsible for playing a critical role in strengthening our organisation’s security posture, leading security assessments, and ensuring that software applications are resilient to security vulnerabilities. You will leverage your deep knowledge of static application security testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) to drive improvements in application security and create a culture of security awareness across the development teams.
Rate: £800.00 inside IR35
Location: London – Hybrid working
Duration: 6-12 Months
Key Responsibilities
- Lead the planning, execution, and ongoing management of SAST, DAST, and SCA security tools and processes to identify and mitigate security risks.
- Collaborate with development teams to integrate secure development practices and security testing into the software development lifecycle (SDLC).
- Conduct regular security reviews and assessments on internal and external applications, APIs, and infrastructure.
- Guide teams through the remediation of identified vulnerabilities and best practices and apply them to improve security testing and detection mechanisms.
Key Skills
- Proven experience as a DAS Security Lead, Application Security Engineer, or a similar role focused on securing applications and software development processes.
- Strong hands-on experience with SAST, DAST, and SCA tools such as (insert examples of tools like Checkmarx, Fortify, OWASP ZAP, SonarQube, etc.).
- Deep understanding of security vulnerabilities (e.g., OWASP Top 10) and how to identify, assess, and mitigate them in the context of web and mobile applications.
- Strong knowledge of application security standards, guidelines, and frameworks (e.g., OWASP, NIST, ISO 27001).
- Experience working in agile development environments, with the ability to balance security needs with speed and flexibility in development cycles.
- Proficiency in multiple programming languages such as Java, C#, JavaScript, Python, etc.
- Experience with threat modeling, security risk assessments, and creating security architecture for applications.
- Strong leadership, communication, and team collaboration skills.
- Relevant security certifications (e.g., CISSP, CISM, GIAC, etc.) are a plus.
Please note that due to the client time frames, you must hold an active SC Clearance to be considered for this role.
#J-18808-Ljbffr
DAS Application Security Lead (SC) employer: Sanderson Government & Defence
Contact Detail:
Sanderson Government & Defence Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land DAS Application Security Lead (SC)
✨Tip Number 1
Make sure to highlight your hands-on experience with SAST, DAST, and SCA tools in your discussions. Familiarity with specific tools like Checkmarx or OWASP ZAP can set you apart, so be ready to share examples of how you've used them effectively.
✨Tip Number 2
Demonstrate your understanding of security vulnerabilities by discussing the OWASP Top 10. Be prepared to explain how you've identified and mitigated these vulnerabilities in past projects, showcasing your practical knowledge.
✨Tip Number 3
Since this role requires collaboration with development teams, emphasize your experience in agile environments. Share specific instances where you've successfully integrated security practices into the software development lifecycle.
✨Tip Number 4
If you have relevant security certifications like CISSP or CISM, make sure to mention them during your conversations. These credentials can enhance your credibility and demonstrate your commitment to the field of application security.
We think you need these skills to ace DAS Application Security Lead (SC)
Some tips for your application 🫡
Highlight Relevant Experience: Make sure to emphasize your experience as a DAS Security Lead or in similar roles. Detail your hands-on experience with SAST, DAST, and SCA tools, and mention specific tools you have used, such as Checkmarx or OWASP ZAP.
Showcase Your Knowledge: Demonstrate your understanding of security vulnerabilities, particularly the OWASP Top 10. Include examples of how you've identified, assessed, and mitigated these vulnerabilities in past projects.
Emphasize Leadership Skills: Since this role requires strong leadership and collaboration skills, provide examples of how you've led teams or collaborated with development teams to integrate secure practices into the software development lifecycle.
Mention Certifications: If you hold any relevant security certifications like CISSP, CISM, or GIAC, be sure to mention them. This can strengthen your application and show your commitment to the field of application security.
How to prepare for a job interview at Sanderson Government & Defence
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with SAST, DAST, and SCA tools. Mention specific tools you've used, like Checkmarx or OWASP ZAP, and provide examples of how you've applied them to identify and mitigate security vulnerabilities.
✨Demonstrate Your Understanding of Security Vulnerabilities
Familiarize yourself with the OWASP Top 10 and be ready to explain how you would identify, assess, and mitigate these vulnerabilities in web and mobile applications. This shows that you have a solid grasp of the key security challenges.
✨Highlight Your Leadership Skills
As a DAS Security Lead, you'll need strong leadership and communication skills. Prepare examples of how you've guided teams through remediation processes and fostered a culture of security awareness within development teams.
✨Discuss Agile Development Experience
Since the role involves working in agile environments, be ready to talk about your experience balancing security needs with the speed and flexibility required in development cycles. Share specific instances where you've successfully integrated security practices into the SDLC.
