Application Security Specialist

We are seeking a highly skilled and motivated Application Security / DevSecOps Lead to drive the security strategy and practices within our client's software development lifecycle. The ideal candidate will be responsible for embedding security into the application development process, leading the DevSecOps initiatives, and collaborating closely with development, operations, and security teams to ensure robust, scalable, and secure software delivery.

This is a permanent role directly based with our client. Our client is a leading organization in the industry, known for its innovative approach and commitment to excellence. As an Application Security / DevSecOps Lead, you will play a key role in shaping the security vision and ensuring that it aligns with the company's overall business objectives.

As a seasoned professional with 10+ years of relevant experience, you will have a strong understanding of software development methodologies, secure coding standards, and application architectures. You will also have hands-on experience with DevSecOps tools such as Jenkins, GitLab CI/CD, SonarQube, Fortify, Veracode, Snyk, or similar.

You will lead the design, implementation, and continuous improvement of application security and DevSecOps practices across the development lifecycle. This will involve establishing and enforcing secure coding standards, threat modeling, and secure design principles. You will also develop and maintain automated security testing tools and integrate security scans into CI/CD pipelines (SAST, DAST, SCA).

In addition, you will collaborate with development teams to conduct code reviews, vulnerability assessments, and remediation guidance. You will manage vulnerability triage and coordinate remediation efforts with development and infrastructure teams. You will also drive security awareness and training programs to build security-minded developers and engineers.

Key Responsibilities:

• Lead the design, implementation, and continuous improvement of application security and DevSecOps practices across the development lifecycle.
• Establish and enforce secure coding standards, threat modeling, and secure design principles.
• Develop and maintain automated security testing tools and integrate security scans into CI/CD pipelines (SAST, DAST, SCA).
• Collaborate with development teams to conduct code reviews, vulnerability assessments, and remediation guidance.
• Manage vulnerability triage and coordinate remediation efforts with development and infrastructure teams.
• Drive security awareness and training programs to build security-minded developers and engineers.

Required Skills and Qualifications

To be successful in this role, you will need:

• Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience).
• 10+ years of relevant experience, with 5 recent years of targeted experience in application security, secure software development, or DevSecOps roles.
• Strong understanding of software development methodologies, secure coding standards, and application architectures.
• Hands-on experience with DevSecOps tools such as Jenkins, GitLab CI/CD, SonarQube, Fortify, Veracode, Snyk, or similar.
• Proficient with security testing methodologies including static code analysis, dynamic testing, penetration testing, and software composition analysis.
• Experience leading security programs and working with cross-functional agile teams.
• Knowledge of cloud security best practices and platforms (AWS, Azure, GCP).
• Familiarity with compliance standards such as OWASP Top 10, PCI-DSS, GDPR, HIPAA, or similar.

Benefits

This role offers a competitive salary and benefits package, including:

• A comprehensive health insurance plan.
• A retirement savings plan with company match.
• A generous paid time off policy.
• Opportunities for professional growth and development.

How to Apply

If you are a motivated and experienced professional looking to take on a new challenge, please submit your application, including your resume and cover letter, to our online portal. We look forward to hearing from you