National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

Senior Application Security Engineer

JR United Kingdom
Northampton
4 days ago
Create job alert

Social network you want to login/join with:
Senior Application Security Engineer, Northampton Client: Cloudsmith
Location: Northampton, United Kingdom
Job Category: Other
-
EU work permit required: Yes
Job Views: 4
Posted: 31.05.2025
Expiry Date: 15.07.2025
Job Description: Some people like building things. Others like breaking them. You? You love both and more importantly, you love stopping bad actors from breaking the things you helped build. If that sounds like your vibe, we’ve got a job you’ll want to see.
This job is with the software supply chain company - securing and powering how software gets delivered everywhere.
What you'll do:
Embed security across the platform, from source to production.
Architect security controls across distributed, cloud-native systems.
Lead threat modeling and security reviews (and get people to enjoy them).
Perform penetration testing services ethically.
Extend security automation and monitoring with tools like CircleCI, GitHub Actions, DataDog, AWS Security Hub, etc.
Harden everything from container runtimes to APIs to artifact pipelines.
Write secure code, review other people’s code, and help everyone improve their secure coding skills.
Build tools, automate boring tasks, and occasionally create a proof of concept for fun.
You need:
A background in software development. You’re a software engineer at heart. Proficiency in Python and some TypeScript is a plus.
Deep application security knowledge.
Hands-on experience with SAST, DAST, RASP, and cloud security (preferably AWS).
Strong understanding of container security, API security, Infrastructure as Code (IaC), and CI/CD pipelines.
Experience with pen testing, threat modeling, and developing security tools.
Bonus points for securing artifact systems or supply chains.
Additional bonus if familiar with Firecracker, gVisor, or security tools like SCA and data enclaves.
You believe security should enable, not block, engineering.
You’re diplomatic and can work effectively with engineering teams to secure the Software Development Life Cycle (SDLC).
This role is remote within the Island of Ireland or the UK. You must be physically located here; remote work from other countries is not permitted.
Work permit sponsorship is not available.

#J-18808-Ljbffr

Related Jobs

View all jobs

Senior Application Security Engineer

Senior Application Security Engineer

Senior Application Security Engineer

Senior Application Security Engineer

Senior Security Engineer, Application Security

DevSecOps / Application Security Engineer

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

LinkedIn Profile Checklist for Cybersecurity Jobs: 10 Tweaks to Supercharge Recruiter Engagement

In the ever-evolving realm of cybersecurity, having a LinkedIn profile that reflects both your technical prowess and threat-hunting acumen is vital. Organisations are on the lookout for professionals skilled in penetration testing, incident response, security architecture and compliance. With hiring managers scanning dozens of profiles daily, your profile needs to not just rank in searches but convey your expertise in safeguarding digital assets. This step-by-step LinkedIn for cybersecurity jobs checklist offers ten practical tweaks to supercharge recruiter engagement. Whether you’re an aspiring security analyst, a seasoned penetration tester or a chief information security officer aiming for board-level roles, these actionable optimisations will sharpen your LinkedIn presence and position you as a top infosec candidate.

Education

Part-Time Study Routes That Lead to Cyber Security Jobs: Evening Courses, Bootcamps & Online Masters

The frequency and sophistication of cyber-attacks have exploded in recent years, making cyber security one of the UK’s most in-demand skill sets. From safeguarding NHS patient data to defending FTSE 100 financial systems, organisations across sectors require qualified professionals—penetration testers, security analysts, incident responders and security architects—to protect critical infrastructure. Yet many professionals cannot pause their careers to upskill full time. Fortunately, an ecosystem of part-time learning pathways—evening courses, intensive bootcamps and flexible online master’s programmes—enables you to learn cyber security while working. This comprehensive guide explores every route: foundational CPD, immersive bootcamps, accredited online MScs, plus funding options, planning strategies and a real-world case study. Whether you’re an IT support technician, a software developer or a compliance manager aiming to pivot into security, you’ll discover how to build expertise at your own pace.

Careers

The Ultimate Assessment-Centre Survival Guide for Cyber Security Jobs in the UK

Assessment centres for cyber security positions in the UK are designed to mirror real-world threat landscapes and test both your technical acumen and soft skills under pressure. Across multiple stages—psychometric assessments, penetration testing exercises, incident response group tasks, case studies, interviews and even informal networking breaks—employers assess your ability to identify vulnerabilities, collaborate in high-stakes scenarios and communicate effectively. This guide walks you through each component, equipping you to stand out and secure your next role in cyber defence.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.