2 of 2 Permanent Static Application Security Testing Jobs in the South East

engineering, product, legal, and commercial teams to embed security into lifecycle governance Define and implement a modern DevSecOps tooling strategy (CI/CD, SAST/DAST, SCM, automation) Drive secure coding, threat modelling, and supply chain security practices (SBOM, provenance, signing) Develop KPIs, metrics, and maturity models … practices (Agile, CI/CD, cloud, automation) Expertise in application security, threat modelling, and secure coding standards Experience implementing tooling ecosystems (e.g. SAST, DAST, SCA, pipeline automation) A track record of influencing senior stakeholders and driving cultural change Ability to build and lead both direct and virtual teams ...

through automation, tooling, and best practice guidance. Key Responsibilities Design and implement scalable CI/CD pipelines using Azure DevOps Integrate security tooling (SAST/DAST) into build and release pipelines Embed DevSecOps controls, including: Vulnerability scanning Secure build gates Policy enforcement Collaborate with engineering and security teams … Required Skills & Experience Strong experience with Azure DevOps (CI/CD pipelines) Proven background in DevOps/DevSecOps consulting roles Hands-on experience integrating SAST and DAST tools into pipelines Solid understanding of secure software delivery practices Experience with: Containerisation Orchestration Strong knowledge of: Git and branching strategies Automation ...