CrawlJobs Logo
Trimble Inc. Logo Trimble Inc. · IT - Software Development

Senior Application Security Engineer (SCA/SAST)

United Kingdom · Job Posted June 09, 2026
Apply Position
Job Link Share

Job Description

At Trimble, we aren't just building software; we're transforming the way the world works. We are looking for a Senior Application Security Engineer who is more than a technical expert—you are a strategist and a catalyst for secure innovation. You will lead the charge in open-source security (SCA) and static analysis (SAST) across a massive global footprint, ensuring that security is a seamless part of the developer experience.

Job Responsibility

  • Act as the global SME for SCA and SAST, turning complex security requirements into scalable, automated solutions
  • Optimize our security tooling to be 'developer-first,' slashing false positives and focusing engineering energy on what truly matters
  • Shape the organizational approach to open-source security and license compliance
  • Embed security into the DNA of the SDLC by collaborating with architects and product owners worldwide
  • Automate everything. You'll build the 'guardrails' that allow our developers to move fast without breaking things
  • Mentor the next generation of security talent and lead through influence across cross-functional teams
  • Stay ahead of the curve. You'll evaluate emerging security tech and proactively keep Trimble at the cutting edge
  • Conduct threat modeling and architectural reviews to kill vulnerabilities before they are ever coded

Requirements

  • 5+ years in AppSec with a deep, battle-tested mastery of SCA and SAST implementation at an enterprise level
  • You speak the language of developers. Whether it's Java, C#, Python, or Go, you can read the code and provide real remediation paths
  • You live in the pipeline. You have hands-on experience with GitHub Actions, Jenkins, Azure DevOps, or GitLab CI
  • You can translate 'security risk' into 'business value' for stakeholders and 'clear action' for engineers
  • Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience
Trimble Inc. - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Application Security Engineer (SCA/SAST)

8 matching positions

Security DevOps Engineer

Realize your potential by joining the leading performance-driven advertising com...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
taboola.com Logo
Taboola
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep DevSecOps Expertise: 5+ years of experience in a senior DevSecOps or Application/Product Security role, with a strong, working knowledge of DevSecOps principles and the modern application threat landscape (e.g., OWASP Top 10)
  • DevSecOps Focus: Proven ability to “shift left” security by embedding automated security controls (SAST, DAST, SCA, IAST) into CI/CD pipelines
  • Open Source Security & Supply Chain Mastery: Deep, hands-on experience managing and hardening open-source software dependencies
  • Key Focus: Expertise in utilizing Software Composition Analysis (SCA) tools (e.g., Dependency-Check, Snyk, Black Duck) to maintain an accurate Software Bill of Materials (SBOM) for all products
  • Vulnerability & Risk Management Pro: Proven ability to establish and own a continuous CVE tracking and remediation process
  • Key Focus: Expertise in risk-rating vulnerabilities based on exploitability and business impact, and driving engineering teams to remediate security risks efficiently using automation and clear Service Level Objectives (SLOs)
  • Audit & Compliance Automation: Proven, hands-on experience managing security audits and certification programs (e.g., SOC 2, ISO 27001) by leveraging “security as code” principles and automating evidence collection to demonstrate compliance across the pipeline
  • Leadership & Influence: Strong leadership skills with the ability to build consensus and partner with R&D, Platform Engineering, and IT teams to embed security practices without being a bottleneck
Job Responsibility
Job Responsibility
  • Build the Secure SDLC (SSDLC) Strategy: Develop, own, and execute the company’s comprehensive DevSecOps strategy, focusing on automation to manage security at scale from code check-in to production deployment
  • Lead Key Security Engineering Initiatives: Lead and manage security engineering programs, including: Maturing the security tools stack (e.g., implementing WAF, and automating SCA/SAST tools)
  • Owning the bug bounty and responsible disclosure program’s triage and remediation tracking
  • Enhancing the Identity and Access Management (IAM) framework through concepts like Just-In-Time (JIT) and Zero Trust principles
  • Operationalize CVE Tracking and Remediation: Design and implement a scalable system for discovering, tracking, and prioritizing Common Vulnerabilities and Exposures (CVEs) in third-party and custom code. Drive the engineering teams to achieve security risk remediation goals by providing clear, actionable data and automated patching mechanisms
  • Measure & Drive Improvement: Develop and maintain key DevSecOps metrics (e.g., Mean Time To Detect/Remediate – MTTD/MTTR, percentage of code coverage by SAST/SCA tools) to measure the effectiveness of automated controls and provide a data-driven picture of the application security posture
  • Embed Security Engineering: Spearhead R&D DevSecOps initiatives, partnering directly with engineering teams to select, deploy, and maintain security tools, establishing security gates and best practices throughout the product development lifecycle
What we offer
What we offer
  • Flexibility: We offer a hybrid work schedule with 3 days in-office with an option to come in more often if desired
  • Work with some of the biggest names: We work with some of the biggest names in the business. Our publisher partners include Yahoo, Conde Nast, Fox Sports, NBCU, ESPN, CBS, and E! Online. Our advertiser clients include Wells Fargo, Honda, Pinterest, Expedia and Honda
Read More
Arrow Right

DevOps Engineer

Realize your potential by joining the leading performance-driven advertising com...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
taboola.com Logo
Taboola
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep DevSecOps Expertise: 5+ years of experience in a senior DevSecOps or Application/Product Security role, with a strong, working knowledge of DevSecOps principles and the modern application threat landscape (e.g., OWASP Top 10)
  • DevSecOps Focus: Proven ability to “shift left” security by embedding automated security controls (SAST, DAST, SCA, IAST) into CI/CD pipelines
  • Open Source Security & Supply Chain Mastery: Deep, hands-on experience managing and hardening open-source software dependencies
  • Key Focus: Expertise in utilizing Software Composition Analysis (SCA) tools (e.g., Dependency-Check, Snyk, Black Duck) to maintain an accurate Software Bill of Materials (SBOM) for all products
  • Vulnerability & Risk Management Pro: Proven ability to establish and own a continuous CVE tracking and remediation process
  • Key Focus: Expertise in risk-rating vulnerabilities based on exploitability and business impact, and driving engineering teams to remediate security risks efficiently using automation and clear Service Level Objectives (SLOs)
  • Audit & Compliance Automation: Proven, hands-on experience managing security audits and certification programs (e.g., SOC 2, ISO 27001) by leveraging “security as code” principles and automating evidence collection to demonstrate compliance across the pipeline
  • Leadership & Influence: Strong leadership skills with the ability to build consensus and partner with R&D, Platform Engineering, and IT teams to embed security practices without being a bottleneck
Job Responsibility
Job Responsibility
  • Build the Secure SDLC (SSDLC) Strategy: Develop, own, and execute the company’s comprehensive DevSecOps strategy, focusing on automation to manage security at scale from code check-in to production deployment
  • Lead Key Security Engineering Initiatives: Lead and manage security engineering programs, including: Maturing the security tools stack (e.g., implementing WAF, and automating SCA/SAST tools)
  • Owning the bug bounty and responsible disclosure program’s triage and remediation tracking
  • Enhancing the Identity and Access Management (IAM) framework through concepts like Just-In-Time (JIT) and Zero Trust principles
  • Operationalize CVE Tracking and Remediation: Design and implement a scalable system for discovering, tracking, and prioritizing Common Vulnerabilities and Exposures (CVEs) in third-party and custom code. Drive the engineering teams to achieve security risk remediation goals by providing clear, actionable data and automated patching mechanisms
  • Measure & Drive Improvement: Develop and maintain key DevSecOps metrics (e.g., Mean Time To Detect/Remediate – MTTD/MTTR, percentage of code coverage by SAST/SCA tools) to measure the effectiveness of automated controls and provide a data-driven picture of the application security posture
  • Embed Security Engineering: Spearhead R&D DevSecOps initiatives, partnering directly with engineering teams to select, deploy, and maintain security tools, establishing security gates and best practices throughout the product development lifecycle
What we offer
What we offer
  • Flexibility: We offer a hybrid work schedule with 3 days in-office with an option to come in more often if desired
  • Work with some of the biggest names: We work with some of the biggest names in the business
Read More
Arrow Right

Sre security

Realize your potential by joining the leading performance-driven advertising com...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
taboola.com Logo
Taboola
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep DevSecOps Expertise: 5+ years of experience in a senior DevSecOps or Application/Product Security role, with a strong, working knowledge of DevSecOps principles and the modern application threat landscape (e.g., OWASP Top 10)
  • DevSecOps Focus: Proven ability to “shift left” security by embedding automated security controls (SAST, DAST, SCA, IAST) into CI/CD pipelines
  • Open Source Security & Supply Chain Mastery: Deep, hands-on experience managing and hardening open-source software dependencies
  • Key Focus: Expertise in utilizing Software Composition Analysis (SCA) tools (e.g., Dependency-Check, Snyk, Black Duck) to maintain an accurate Software Bill of Materials (SBOM) for all products
  • Vulnerability & Risk Management Pro: Proven ability to establish and own a continuous CVE tracking and remediation process
  • Key Focus: Expertise in risk-rating vulnerabilities based on exploitability and business impact, and driving engineering teams to remediate security risks efficiently using automation and clear Service Level Objectives (SLOs)
  • Audit & Compliance Automation: Proven, hands-on experience managing security audits and certification programs (e.g., SOC 2, ISO 27001) by leveraging “security as code” principles and automating evidence collection to demonstrate compliance across the pipeline
  • Leadership & Influence: Strong leadership skills with the ability to build consensus and partner with R&D, Platform Engineering, and IT teams to embed security practices without being a bottleneck
Job Responsibility
Job Responsibility
  • Build the Secure SDLC (SSDLC) Strategy: Develop, own, and execute the company’s comprehensive DevSecOps strategy, focusing on automation to manage security at scale from code check-in to production deployment
  • Lead Key Security Engineering Initiatives: Lead and manage security engineering programs, including: Maturing the security tools stack (e.g., implementing WAF, and automating SCA/SAST tools)
  • Owning the bug bounty and responsible disclosure program’s triage and remediation tracking
  • Enhancing the Identity and Access Management (IAM) framework through concepts like Just-In-Time (JIT) and Zero Trust principles
  • Operationalize CVE Tracking and Remediation: Design and implement a scalable system for discovering, tracking, and prioritizing Common Vulnerabilities and Exposures (CVEs) in third-party and custom code. Drive the engineering teams to achieve security risk remediation goals by providing clear, actionable data and automated patching mechanisms
  • Measure & Drive Improvement: Develop and maintain key DevSecOps metrics (e.g., Mean Time To Detect/Remediate – MTTD/MTTR, percentage of code coverage by SAST/SCA tools) to measure the effectiveness of automated controls and provide a data-driven picture of the application security posture
  • Embed Security Engineering: Spearhead R&D DevSecOps initiatives, partnering directly with engineering teams to select, deploy, and maintain security tools, establishing security gates and best practices throughout the product development lifecycle
What we offer
What we offer
  • Flexibility: We offer a hybrid work schedule with 3 days in-office with an option to come in more often if desired
  • Work with some of the biggest names: We work with some of the biggest names in the business. Our publisher partners include Yahoo, Conde Nast, Fox Sports, NBCU, ESPN, CBS, and E! Online. Our advertiser clients include Wells Fargo, Honda, Pinterest, Expedia and Honda
Read More
Arrow Right

Resident Assistant

If you’re looking for a job that goes beyond the basics to deliver purpose and j...
Location
Location
United States of America , Hillsboro
Salary
Salary:
18.00 - 20.00 USD / Hour
leisurecare.com Logo
Leisure Care
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated experience in a caregiving role
  • Current CNA a plus!
Job Responsibility
Job Responsibility
  • Assists resident with activities of daily living (ADL's) and all personal care skills (bathing, dressing, grooming, toileting)
  • Makes appropriate observations about the resident’s condition in every interaction
  • Records and follows-up with changes in resident’s condition in a timely manner
  • Assists residents with laundry and housekeeping services as needed
What we offer
What we offer
  • Medical, Dental and Vision
  • Early Wage Access (access to earned wages when needed!)
  • 401k
  • 10 days vacation & 1 hour Sick Leave earned for every 30 hours worked
  • Bereavement & Jury Duty Leave
  • 6 Holidays
  • 2 Float Holidays
  • Flexible Spending Accounts (Health and Dependent Care)
  • Meal Discounts
  • Tuition Assistance
  • Fulltime
Read More
Arrow Right

Traffic Management CAD Technician

FM Conway is currently recruiting a Traffic Management CAD Technician to join ou...
Location
Location
United Kingdom , Ipswich
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
July 04, 2026
Flip Icon
Requirements
Requirements
  • Strong knowledge of Traffic Management operations
  • experience using CAD, BricsCAD and Cone 11 software
  • ability to read and translate blueprints and technical drawings
  • ability to work well under pressure, prioritise tasks effectively and have excellent attention to detail
  • M7 Lantra qualification is highly desirable, but not essential
Job Responsibility
Job Responsibility
  • Working within a team of Traffic Management development designers and Project Engineers to ensure that drawings are to a high and legal standard
  • Producing clear drawings, signage placement layouts and diversion route strategies
  • Developing safe and efficient traffic management plans for work sites and road network
  • Carrying out on site assessments as required
  • Designing sites in accordance with Chapter 8 TSM
  • Engaging with Project Teams & Engineers to respond effectively to working methods that require traffic Management designs that conform to a legal standard
What we offer
What we offer
  • Career and professional development
  • 23 days holiday plus bank holidays
  • Life assurance
  • Opportunities for internal and external training
  • Access to a wide range of shopping discounts through Rewarding Great People platform
  • Health and well-being benefits including 24-hour advice lines
  • Support from in-house mental health first aiders
  • Fulltime
Read More
Arrow Right

Registered Nurse, CVOR

Baptist Downtown is hiring a Registered Nurse for our Cardiovascular Operating R...
Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
baptistjax.com Logo
Baptist Health (Florida)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 1-2 years Operating Room Nursing Experience Required
  • Basic Life Support (BLS) Required
  • Advanced Cardiac Life Support (ACLS) Required
  • Licensed Registered Nurse Required
  • Associate of Science, Nursing
  • Registered Nurse (RN) - State Nursing Boards
  • Driver's License - DMV
  • Basic Life Support (BLS) - AHA
  • Advanced Cardiac Life Support (ACLS) - AHA
Job Responsibility
Job Responsibility
  • Providing for patient needs as recognized through use of the nursing process
  • Supervision of care provided by supportive personnel and coordination of care provided by ancillary services
  • Including patients and significant others (SO)/families in developing an individualized plan of care
  • Education of patients/SO/families to their disease process and plan of care
  • Coordinating and preparing assigned operating room/case
  • Assessment of patient care needs and the anticipation of needs of the case
  • Circulating, scrubbing, assisting on Cardiothoracic and vascular procedures
  • Fulltime
Read More
Arrow Right

Pediatric Occupational Therapist

Wolfson Children's Hospital Rehab Services is hiring a Pediatric Occupational Th...
Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
baptistjax.com Logo
Baptist Health (Florida)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree (or higher) in Occupational Therapy Required
  • Licensed Occupational Therapist from FL Department of Health Required
  • Basic Life Support (BLS) certification from the American Heart Association Required
  • Pediatric Occupational Therapy in the outpatient setting is strongly preferred
Job Responsibility
Job Responsibility
  • Evaluates and treats patients with developmental, neurological, orthopedic, and medical diagnoses
  • Extensive patient/family education
  • Works with multidisciplinary team care
What we offer
What we offer
  • $1,000 Sign on Bonus
Read More
Arrow Right

Nursery Manager

Join the Kindred Family – Lead, Inspire, and Make a Difference. Are you an exper...
Location
Location
United Kingdom , Hauxton
Salary
Salary:
34000.00 - 36000.00 GBP / Year
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in leading and managing a team within early years
  • Strong written and verbal communication skills
  • Excellent organisational skills and attention to detail
  • Outstanding customer service and time management
  • Full and relevant Early Years Level 3 Childcare Qualification or higher
  • Sound knowledge of EYFS and OFSTED guidelines
Job Responsibility
Job Responsibility
  • Lead the Deputy Manager, Third in Charge, and Room Leaders to ensure high standards of Early Years care and education
  • Maintain an organised, safe, and stimulating nursery environment
  • Keep accurate records and ensure procedures are followed across the nursery
  • Build and maintain a reputation as the nursery of choice for children and staff
  • Model and monitor best practice in line with regulatory guidelines
  • Inspire and support your team, overseeing inductions, mentoring, and ongoing development
  • Ensure the nursery runs efficiently, meets KPIs, budgets, and targets, and is prepared for audits and inspections
  • Oversee the day-to-day operations of the nursery
  • Lead by example, modelling good practice and creating a shared vision
  • Supervise, support, and allocate tasks to your team
What we offer
What we offer
  • Birthday Off
  • 6 Fully Paid Sick Days
  • Cashback Healthcare Plan
  • Retail Discounts
  • Recognition & Reward Scheme
  • 50% Childcare Discount
  • 24/7 Virtual GP Access
  • 24/7 Counselling Support
  • Discounted Gym Membership
  • Personal Financial Advisor Access
  • Fulltime
Read More
Arrow Right