At a Glance
- Tasks: Own application security and embed it into the development lifecycle.
- Company: Dynamic fintech company in Manchester with a collaborative culture.
- Benefits: Competitive salary of up to £75,000 plus benefits and hybrid work model.
- Other info: Join a supportive team focused on secure development practices.
- Why this job: Make a real impact on secure software delivery in a scaling SaaS platform.
- Qualifications: Experience in application security, SAST, DAST, and API security.
The predicted salary is between 75000 - 75000 £ per year.
Requirements
- Strong experience in application security, ideally within a SaaS or Fintech environment.
- Hands-on experience with SAST, DAST, and SCA tooling such as Snyk, Checkmarx, Semgrep, Burp Suite, or similar.
- Comfortable running threat modelling sessions with engineering and product teams.
- Solid understanding of the OWASP Top 10 and how to remediate real-world vulnerabilities.
- Understanding of API security, including REST and GraphQL, and the common attack vectors associated with them.
- Knowledge of embedding security into secure SDLC and CI/CD pipelines.
- Understanding of authentication and identity concepts such as OAuth, OIDC, JWT, and SAML.
- Ability to communicate risk clearly to engineers, product managers, and leadership.
- Collaborative and enjoy working closely with development teams to educate and enable secure delivery.
Responsibilities
- Take ownership of application security across the engineering function.
- Embed security into the development lifecycle from the start.
- Run threat models with engineering and product teams.
- Review code and help developers ship securely.
- Ensure the right application security tooling is in place.
- Work closely with engineering teams to identify and remediate vulnerabilities.
- Help educate developers and stakeholders on secure development practices.
- Communicate security risk clearly to technical and non-technical audiences.
- Support the secure delivery of our SaaS platform as it continues to scale.
About the Role
We are a fintech business in Manchester building our own SaaS platform, which has been live for a decade and is now scaling while handling sensitive financial data. This is a hybrid role based in Manchester, with three days a week in the office and commutable from Stockport, Wigan, Bolton, Rochdale, Bury, Sale, Liverpool, Warrington, and Runcorn. We offer a salary of up to £75,000 plus benefits. Our engineering teams are collaborative and welcome security involvement, and this role gives us the opportunity to embed application security deeply into the way we build and ship software.
App Sec Engineer in Manchester employer: Sivara GmbH
As a leading fintech company based in Manchester, we pride ourselves on fostering a collaborative work culture that values security as an integral part of our software development process. With a competitive salary of up to £75,000 and a hybrid working model, we offer our employees the chance to grow their skills in application security while contributing to a well-established SaaS platform that handles sensitive financial data. Our commitment to employee development and a supportive environment makes us an excellent employer for those seeking meaningful and rewarding careers in the tech industry.
