National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

Senior Application Security Engineer

Cloudsmith
united kingdom, united kingdom
1 month ago
Applications closed

Related Jobs

View all jobs

Senior Application Security Engineer

Senior Application Security Engineer

Senior Application Security Engineer

Senior Application Security Engineer

Senior Application Security Engineer

Senior Security Engineer, Application Security

Some people like building things. Others like breaking them. You? You love both and more importantly, you love stopping bad actors from breaking the thingsyouhelped build. If that sounds like your vibe, we’ve got a job you’ll want to see.


This job is withthesoftware supply chain company - securing and powering how software gets delivered everywhere.


What you'll do:

  • Embed security across the platform, from source to prod.
  • Architect security controls across distributed, cloud-native systems.
  • Lead threat modeling and security reviews (and get people to enjoy them)
  • Pen-test services and infra (ethically, please).
  • Extend security automation and monitoring with tools like CircleCI, GitHub Actions, DataDog, AWS Security Hub, etc.
  • Harden everything from container runtimes to APIs to artifact pipelines.
  • Write secure code, review other people’s code, and help everyone level up their secure coding game.
  • Build tools, automate boring stuff, and occasionally drop a ‘sploity’ proof of concept for fun.


You need:

  • A background in software development. At your core, you’re a software engineer. Python for sure and a bit of TypeScript never hurt anyone.
  • Deep application security knowledge
  • Hands-on experience with SAST, DAST, RASP, and securing cloud (preferably AWS).
  • Strong grasp of container security, API security, IaC, and CI/CD.
  • You’ve done pen testing, threat modeling, and maybe even built some of your own security tools.
  • Big bonus if you’ve secured artifact systems or supply chains before.
  • Bigger bonus if you’ve worked with Firecracker, gVisor, or fancy things like SCA and data enclaves.
  • You believe security should enable, not block, engineering.
  • You’re a diplomat - you gotta work with engineering to secure the SDLC, not spook them.


If interested, get in touch on


This job is remote on the Island of Ireland or in the UK. You need to be physically located here - you cannot work remotely from another country.

Work permit sponsorship is not available.

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

LinkedIn Profile Checklist for Cybersecurity Jobs: 10 Tweaks to Supercharge Recruiter Engagement

In the ever-evolving realm of cybersecurity, having a LinkedIn profile that reflects both your technical prowess and threat-hunting acumen is vital. Organisations are on the lookout for professionals skilled in penetration testing, incident response, security architecture and compliance. With hiring managers scanning dozens of profiles daily, your profile needs to not just rank in searches but convey your expertise in safeguarding digital assets. This step-by-step LinkedIn for cybersecurity jobs checklist offers ten practical tweaks to supercharge recruiter engagement. Whether you’re an aspiring security analyst, a seasoned penetration tester or a chief information security officer aiming for board-level roles, these actionable optimisations will sharpen your LinkedIn presence and position you as a top infosec candidate.

Part-Time Study Routes That Lead to Cyber Security Jobs: Evening Courses, Bootcamps & Online Masters

The frequency and sophistication of cyber-attacks have exploded in recent years, making cyber security one of the UK’s most in-demand skill sets. From safeguarding NHS patient data to defending FTSE 100 financial systems, organisations across sectors require qualified professionals—penetration testers, security analysts, incident responders and security architects—to protect critical infrastructure. Yet many professionals cannot pause their careers to upskill full time. Fortunately, an ecosystem of part-time learning pathways—evening courses, intensive bootcamps and flexible online master’s programmes—enables you to learn cyber security while working. This comprehensive guide explores every route: foundational CPD, immersive bootcamps, accredited online MScs, plus funding options, planning strategies and a real-world case study. Whether you’re an IT support technician, a software developer or a compliance manager aiming to pivot into security, you’ll discover how to build expertise at your own pace.

The Ultimate Assessment-Centre Survival Guide for Cyber Security Jobs in the UK

Assessment centres for cyber security positions in the UK are designed to mirror real-world threat landscapes and test both your technical acumen and soft skills under pressure. Across multiple stages—psychometric assessments, penetration testing exercises, incident response group tasks, case studies, interviews and even informal networking breaks—employers assess your ability to identify vulnerabilities, collaborate in high-stakes scenarios and communicate effectively. This guide walks you through each component, equipping you to stand out and secure your next role in cyber defence.