InfoSec Specialist

INFORMATION SECURITY SPECIALIST

KEY POINTS* Hybrid working model (Stoke-on-Trent) - up to £55,000 p/a* Focus on application security, code analysis, threat modelling and penetration testing* Work closely with Software Development teams across a large technical environment* Opportunity to influence secure development practices and automation initiatives

ABOUT THE CLIENT We're supporting a respected and technology-driven organisation that continues to strengthen its security posture across a broad portfolio of applications. They are looking to appoint an Information Security Specialist to join their established Application Security team, contributing to secure development practices, code assurance, and vulnerability identification across complex systems.

THE BENEFITS* Hybrid working and flexible approach* Exposure to enterprise and bespoke tooling, including AI-enhanced security processes* Strong opportunities for professional growth and cross-team collaboration* Chance to contribute to the evolution of security testing methodologies and automation

THE INFORMATION SECURITY SPECIALIST ROLE: In this role, you'll focus on securing internally developed and third-party applications, carrying out code reviews, threat modelling, and application penetration testing. You'll partner closely with Software Development teams to ensure secure design principles are understood and embedded throughout the Software Development Lifecycle (SDL). You'll support improvements to security tooling, enhance supply-chain assurance, contribute to project security reviews, and help drive the move towards automated processes where suitable.

INFORMATION SECURITY SPECIALIST ESSENTIAL SKILLS* Experience with automated, dynamic and static application security testing tools* Ability to perform manual security testing to identify complex or logical vulnerabilities* Familiarity with OWASP methodologies and threat-modelling frameworks* Understanding of software development practices and common programming languages* Working knowledge of CI/CD pipelines and associated security tooling* Experience delivering and reporting on web application penetration testing* Strong communication and documentation skills

TO BE CONSIDERED: Please either apply through this advert or email me directly via .For further information please call me on / .By applying for this role, you give express consent for us to process and submit (subject to required skills) your application to our client in conjunction with this vacancy only.

KEY SKILLS Application Security, AppSec, OWASP, Threat Modelling, Secure Development Lifecycle, Code Review, DAST, SAST, CI/CD, Penetration Testing, Supply Chain Security, Risk Assessment, Software Security, Automation