3 of 3 Permanent Dynamic Application Security Testing Jobs in the South West

Description The Security Engineering Team Lead owns and evolves MO's application security capability, embedding security into engineering practices, platforms, and delivery pipelines while leading a small team of specialists. Reporting to the Cyber Security Technical Manager, the role drives secure-by-design principles across … professionals, with the ability to build capability within a team. Hands-on experience implementing and operating application security tooling, such as SAST, DAST, SCA, and secrets management. Experience integrating security controls into CI/CD pipelines (e.g. GitHub, AWS DevOps), including automated testing and policy enforcement. ...

Security Engineering Lead Location: Bristol (3 days per week on-site) Salary: £100,000 + excellent benefits An established and highly regarded financial services organisation is seeking a Security Engineering Lead to play a pivotal role in strengthening security controls, risk management, and remediation across a major … controls into CI/CD pipelines and cloud environments Own and evolve security tooling, including vulnerability management, detection, and DevSecOps capabilities (eg SAST, DAST, SCA, container and cloud security tooling) Define and implement secure engineering standards, including secure coding, infrastructure-as-code security, and threat modelling practices ...

current AI tooling helps and where it falls short. Apply engineering practices that hold up in production: TDD, secrets management and rotation, SAST/DAST, structured logging, metrics, tracing, and automated CI/CD (GitHub Actions, Jenkins). Own what you build end-to-end, including the infrastructure and operations … tools (Claude Code, Cursor, GitHub Copilot) with demonstrable workflows, sub-agents, skills, and innovative approaches. Strong Python or TypeScript, with OOP, SOLID, 12-factor application development, and microservice architecture. You've built Next.js applications, FastAPI services, and similar. End-to-end implementation experience with vector databases, retrieval pipelines ...