Systems Administrator managing IT support and compliance activities in a tech - oriented company. Leading infrastructure design and security measures while collaborating with managed service providers.
About the role
- Application Security Specialist focusing on security in software development lifecycle at Insight Investment in Manchester, driving DevSecOps practices across teams.
Responsibilities
- Collaborate with development, DevOps, and architecture teams to integrate security into the SDLC
- Design and implement secure coding practices and threat modelling processes
- Lead the integration of security tools into CI/CD pipelines (e.g., SAST, DAST, SCA, IAST)
- Conduct security assessments of applications, APIs, and microservices
- Develop and maintain security standards, guidelines, and automation scripts
- Provide guidance on secure design patterns and architecture decisions
- Promote a DevSecOps culture and continuous security improvement across development and architecture team
Requirements
- Strong understanding of application security principles (e.g., OWASP Top 10, CWE).
- Experience with secure coding in languages such as Java, Python, JavaScript, or .NET. (.NET and Python are preferable)
- Hands-on experience with one of each or more security tools:
- Static Analysis (SAST): Veracode (preferable), Checkmarx, Fortify, etc.
- Dynamic Analysis (DAST): Veracode (preferable), Burp Suite, OWASP ZAP, etc.
- Software Composition Analysis (SCA): Veracode (preferable), Snyk, Black Duck, etc.
- Container Security: Aqua Security (preferable), Prisma Cloud, etc.
- Familiarity with CI/CD tools (e.g., Github Actions, Teamcity, Octopus, Azure DevOps)
- Knowledge of containerised environments and their security best practices (Docker, Kubernetes)
- Knowledge of cloud security (Azure) and infrastructure-as-code (Terraform, CloudFormation)
- (Preferable) Experience with threat modeling tools (e.g., Threat Dragon, IriusRisk)
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cyber Security Expert supporting project teams with structured risk assessments and compliance documentation at Nordex wind farms. Collaborating closely with Information Security to ensure secure operations.
OT Cybersecurity Engineer enhancing cybersecurity in industrial environments. Ensuring compliance with cybersecurity standards and collaborating across engineering, IT, and product teams.
Information Security Analyst implementing security solutions at one of Brazil's largest banks. Focus on information security and compliance with internal policies and best practices.
Security Intern collaborating with security teams to ensure compliance and develop secure processes in fintech environment. Engaging in hands - on experience with application security and risk management.
![[solidcore] logo](/api/images/solidcore.jpg)
Director overseeing IT operations and cybersecurity at [solidcore]. Ensuring system reliability and compliance for HQ and studio locations.
Senior Manager of Cybersecurity application and cloud security at Medtronic. Leading teams to enhance security in cloud - native environments and software development.
Security Engineer designing and implementing secure architecture solutions for Disney's global technology ecosystem. Collaborating with teams to assess threats and secure AI/ML implementations and technologies.
Head of Information Security at Thndr, leading security strategy and governance across Egypt, UAE, and KSA. Responsible for managing risk and building trusted security function.
Security Lead responsible for security across product, cloud infrastructure, and internal systems. Aiming to enhance security measures and practices within a SaaS environment.