Senior Application Security Engineer (SCA/SAST)

Scale Security. Empower Engineers. Shape the Future.

Location: UK - Remote

The Mission: At Trimble, we aren't just building software; we’re transforming the way the world works. We are looking for a Senior Application Security Engineer who is more than a technical expert—you are a strategist and a catalyst for secure innovation. You will lead the charge in open-source security (SCA) and static analysis (SAST) across a massive global footprint, ensuring that security is a seamless part of the developer experience.

Why This Role?

• Global Influence: You won't just be "fixing bugs." You will be the architect of a global security strategy that impacts 99% of our engineering teams.

• Strategic Autonomy: Lead the vision for our SCA and SAST roadmaps. You have the seat at the table to decide how we evolve.

• Innovation at Scale: Work across diverse tech stacks—from .NET and Java to Go and Python—integrating security directly into the heartbeat of our CI/CD pipelines.

How You’ll Make an Impact

Strategic Leadership

• Act as the global SME for SCA and SAST, turning complex security requirements into scalable, automated solutions.

• Optimize our security tooling to be "developer-first," slashing false positives and focusing engineering energy on what truly matters.

• Shape the organizational approach to open-source security and license compliance.

Engineering Excellence

• Embed security into the DNA of the SDLC by collaborating with architects and product owners worldwide.

• Automate everything. You’ll build the "guardrails" that allow our developers to move fast without breaking things.

• Mentor the next generation of security talent and lead through influence across cross-functional teams.

Vision & Advisory

• Stay ahead of the curve. You’ll evaluate emerging security tech and proactively keep Trimble at the cutting edge.

• Conduct threat modeling and architectural reviews to kill vulnerabilities before they are ever coded.

The Profile We’re Looking For

• The Architect: 5+ years in AppSec with a deep, battle-tested mastery of SCA and SAST implementation at an enterprise level.

• The Polyglot: You speak the language of developers. Whether it’s Java, C#, Python, or Go, you can read the code and provide real remediation paths.

• The Integrator: You live in the pipeline. You have hands-on experience with GitHub Actions, Jenkins, Azure DevOps, or GitLab CI.

• The Communicator: You can translate "security risk" into "business value" for stakeholders and "clear action" for engineers.

• Education: Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.

How to Apply: Please submit an online application for this position by clicking on the ‘Apply Now’ button located in this posting.

Join a Values-Driven Team: Belong, Grow, Innovate. 

At Trimble, our core values of Belong, Grow, and Innovate aren't just words—they're the foundation of our culture. We foster an environment where you are seen, heard, and valued (Belong); where you have an opportunity to build a career and drive our collective growth (Grow); and where your innovative ideas shape the future (Innovate). We believe in empowering local teams to create impactful strategies, ensuring our global vision resonates with every individual. Become part of a team where your contributions truly matter. 

Trimble’s Privacy Policy

If you need assistance or would like to request an accommodation in connection with the application process, please contact AskPX@px.trimble.com.