Job Description We are seeking a skilled and experienced DevSecOps Engineer with a strong specialization in Google Cloud Platform (GCP) to join our dynamic team. In this role, you will play a pivotal role in ensuring the security and integrity of our software development processes on GCP. Your expertise in GCP, Rego policies, and Terraform will be instrumental in building a secure and efficient development pipeline. Responsibilities Develop, implement, and maintain Rego policies to enforce security controls and compliance standards within our GCP infrastructure and applications. Collaborate with development and operations teams to integrate security into the GCP-focused CI/CD pipeline, ensuring security checks and scans are automated and seamlessly incorporated. Leverage your GCP expertise to architect and implement secure microservices and containerized applications, ensuring compliance with GCP security best practices. Design and implement infrastructure-as-code (IaC) using Terraform to define and manage GCP resources securely and efficiently. Perform thorough security assessments on GCP environments, utilizing GCP specific security tools and technologies, to identify and address potential vulnerabilities. Conduct threat modeling and risk assessments for GCP deployments, designing effective security solutions tailored to GCP services. Collaborate with cross functional teams to respond to GCP specific security incidents promptly, conduct root cause analysis, and implement corrective actions. Stay current with GCP advancements, industry security trends, and best practices, sharing knowledge and insights with team members. Drive a culture of security awareness specific to GCP environments, ensuring security considerations are integrated throughout development. Requirements Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). Proven experience as a DevSecOps Engineer with a strong focus on GCP. Expertise in Rego policies and policy as code practices, especially with implementation in GCP. In depth understanding of GCP services, security controls, and best practices. Proficiency in using GCP specific security tools, vulnerability scanners, and penetration testing tools. Strong experience with infrastructure as code (IaC) using Terraform for GCP resource provisioning and management. Familiarity with CI/CD pipelines and automation tools (e.g., Jenkins, GitLab CI/CD) with GCP integrations. Solid knowledge of GCP security frameworks, standards, and compliance requirements. Strong understanding of container security in GCP and experience securing microservices. Excellent communication and collaboration skills, with a proven ability to work effectively in cross functional teams. Relevant GCP certifications such as Google Professional DevOps Engineer, Google Professional Cloud Security Engineer, or similar certifications are highly advantageous. If you're enthusiastic about combining your GCP expertise, Rego policies knowledge, and Terraform skills to shape a secure GCP development environment, we invite you to join our team and drive our GCP focused software security initiatives forward.
06/06/2026
Full time
Job Description We are seeking a skilled and experienced DevSecOps Engineer with a strong specialization in Google Cloud Platform (GCP) to join our dynamic team. In this role, you will play a pivotal role in ensuring the security and integrity of our software development processes on GCP. Your expertise in GCP, Rego policies, and Terraform will be instrumental in building a secure and efficient development pipeline. Responsibilities Develop, implement, and maintain Rego policies to enforce security controls and compliance standards within our GCP infrastructure and applications. Collaborate with development and operations teams to integrate security into the GCP-focused CI/CD pipeline, ensuring security checks and scans are automated and seamlessly incorporated. Leverage your GCP expertise to architect and implement secure microservices and containerized applications, ensuring compliance with GCP security best practices. Design and implement infrastructure-as-code (IaC) using Terraform to define and manage GCP resources securely and efficiently. Perform thorough security assessments on GCP environments, utilizing GCP specific security tools and technologies, to identify and address potential vulnerabilities. Conduct threat modeling and risk assessments for GCP deployments, designing effective security solutions tailored to GCP services. Collaborate with cross functional teams to respond to GCP specific security incidents promptly, conduct root cause analysis, and implement corrective actions. Stay current with GCP advancements, industry security trends, and best practices, sharing knowledge and insights with team members. Drive a culture of security awareness specific to GCP environments, ensuring security considerations are integrated throughout development. Requirements Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). Proven experience as a DevSecOps Engineer with a strong focus on GCP. Expertise in Rego policies and policy as code practices, especially with implementation in GCP. In depth understanding of GCP services, security controls, and best practices. Proficiency in using GCP specific security tools, vulnerability scanners, and penetration testing tools. Strong experience with infrastructure as code (IaC) using Terraform for GCP resource provisioning and management. Familiarity with CI/CD pipelines and automation tools (e.g., Jenkins, GitLab CI/CD) with GCP integrations. Solid knowledge of GCP security frameworks, standards, and compliance requirements. Strong understanding of container security in GCP and experience securing microservices. Excellent communication and collaboration skills, with a proven ability to work effectively in cross functional teams. Relevant GCP certifications such as Google Professional DevOps Engineer, Google Professional Cloud Security Engineer, or similar certifications are highly advantageous. If you're enthusiastic about combining your GCP expertise, Rego policies knowledge, and Terraform skills to shape a secure GCP development environment, we invite you to join our team and drive our GCP focused software security initiatives forward.
Responsibilities & Qualifications Passionate to push boundaries and try new approaches toward automation. Has experience in retail or food and beverage environment and can replicate that experience on a larger scale. Has led an eCommerce journey in JavaScript. Front end and back end services, website and micro services, respectively. Quality communicator in person and in writing. Experience hiring and leading a team. Need solid set of automation testing. Need someone to wireframe how it should be done; should never talk to current team who is doing manual testing. Person needs to be at a level where she / he can challenge and contribute to strategizing. DORA metrics (via Google): Deployment Frequency, Lead Time for Changes, Time to Restore Services, Change Failure Rate. Wireframe designed and stakeholder buy in won. Script writing begun and initial changes. Compensation £52,000.00 - £58,000.00 per year.
06/06/2026
Full time
Responsibilities & Qualifications Passionate to push boundaries and try new approaches toward automation. Has experience in retail or food and beverage environment and can replicate that experience on a larger scale. Has led an eCommerce journey in JavaScript. Front end and back end services, website and micro services, respectively. Quality communicator in person and in writing. Experience hiring and leading a team. Need solid set of automation testing. Need someone to wireframe how it should be done; should never talk to current team who is doing manual testing. Person needs to be at a level where she / he can challenge and contribute to strategizing. DORA metrics (via Google): Deployment Frequency, Lead Time for Changes, Time to Restore Services, Change Failure Rate. Wireframe designed and stakeholder buy in won. Script writing begun and initial changes. Compensation £52,000.00 - £58,000.00 per year.
Job Description We are seeking a skilled and experienced DevSecOps Engineer with a strong specialization in Google Cloud Platform (GCP) to join our dynamic team. In this role, you will play a pivotal role in ensuring the security and integrity of our software development processes on GCP. Your expertise in GCP, Rego policies, and terraform will be instrumental in building a secure and efficient development pipeline. Responsibilities Develop, implement, and maintain Rego policies to enforce security controls and compliance standards within our GCP infrastructure and applications. Collaborate with development and operations teams to integrate security into the GCP-focused CI/CD pipeline, ensuring security checks and scans are automated and seamlessly incorporated. Leverage your GCP expertise to architect and implement secure microservices and containerized applications, ensuring compliance with GCP security best practices. Design and implement infrastructure-as-code (IaC) using Terraform to define and manage GCP resources securely and efficiently. Perform thorough security assessments on GCP environments, utilizing GCP-specific security tools and technologies, to identify and address potential vulnerabilities. Conduct threat modelling and risk assessments for GCP deployments, designing effective security solutions tailored to GCP services. Collaborate with cross-functional teams to respond to GCP-specific security incidents promptly, conduct root cause analysis, and implement corrective actions. Stay current with GCP advancements, industry security trends, and best practices, sharing knowledge and insights with team members. Drive a culture of security awareness specific to GCP environments, ensuring security considerations are integrated throughout development. Requirements Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). Proven experience as a DevSecOps Engineer with a strong focus on GCP. Expertise in Rego policies and policy-as-code practices especially with implementation in GCP. THIS IS AN ABSOLUTE MUST In-depth understanding of GCP services, security controls, and best practices. Proficiency in using GCP-specific security tools, vulnerability scanners, and penetration testing tools. Experience with Wiz and its integration for continuous security monitoring in GCP environments. Strong experience with infrastructure-as-code (IaC) using Terraform for GCP resource provisioning and management. Familiarity with CI/CD pipelines and automation tools (e.g., Jenkins, GitLab CI/CD) with GCP integrations. Solid knowledge of GCP security frameworks, standards, and compliance requirements. Strong understanding of container security in GCP and experience securing microservices. Excellent communication and collaboration skills, with a proven ability to work effectively in cross functional teams. Relevant GCP certifications such as Google Professional DevOps Engineer, Google Professional Cloud Security Engineer, or similar certifications are highly advantageous.
06/06/2026
Full time
Job Description We are seeking a skilled and experienced DevSecOps Engineer with a strong specialization in Google Cloud Platform (GCP) to join our dynamic team. In this role, you will play a pivotal role in ensuring the security and integrity of our software development processes on GCP. Your expertise in GCP, Rego policies, and terraform will be instrumental in building a secure and efficient development pipeline. Responsibilities Develop, implement, and maintain Rego policies to enforce security controls and compliance standards within our GCP infrastructure and applications. Collaborate with development and operations teams to integrate security into the GCP-focused CI/CD pipeline, ensuring security checks and scans are automated and seamlessly incorporated. Leverage your GCP expertise to architect and implement secure microservices and containerized applications, ensuring compliance with GCP security best practices. Design and implement infrastructure-as-code (IaC) using Terraform to define and manage GCP resources securely and efficiently. Perform thorough security assessments on GCP environments, utilizing GCP-specific security tools and technologies, to identify and address potential vulnerabilities. Conduct threat modelling and risk assessments for GCP deployments, designing effective security solutions tailored to GCP services. Collaborate with cross-functional teams to respond to GCP-specific security incidents promptly, conduct root cause analysis, and implement corrective actions. Stay current with GCP advancements, industry security trends, and best practices, sharing knowledge and insights with team members. Drive a culture of security awareness specific to GCP environments, ensuring security considerations are integrated throughout development. Requirements Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). Proven experience as a DevSecOps Engineer with a strong focus on GCP. Expertise in Rego policies and policy-as-code practices especially with implementation in GCP. THIS IS AN ABSOLUTE MUST In-depth understanding of GCP services, security controls, and best practices. Proficiency in using GCP-specific security tools, vulnerability scanners, and penetration testing tools. Experience with Wiz and its integration for continuous security monitoring in GCP environments. Strong experience with infrastructure-as-code (IaC) using Terraform for GCP resource provisioning and management. Familiarity with CI/CD pipelines and automation tools (e.g., Jenkins, GitLab CI/CD) with GCP integrations. Solid knowledge of GCP security frameworks, standards, and compliance requirements. Strong understanding of container security in GCP and experience securing microservices. Excellent communication and collaboration skills, with a proven ability to work effectively in cross functional teams. Relevant GCP certifications such as Google Professional DevOps Engineer, Google Professional Cloud Security Engineer, or similar certifications are highly advantageous.
Sugama Technologies LTD is seeking a skilled DevSecOps Engineer specializing in Google Cloud Platform (GCP). You will enhance software development security processes on GCP, focusing on Rego policies and Terraform. Your responsibilities include developing security controls, integrating security into CI/CD pipelines, and conducting security assessments. Ideal candidates should have a Bachelor's degree in Computer Science and expertise in GCP security tools. Join us to lead secure development practices in a dynamic environment.
06/06/2026
Full time
Sugama Technologies LTD is seeking a skilled DevSecOps Engineer specializing in Google Cloud Platform (GCP). You will enhance software development security processes on GCP, focusing on Rego policies and Terraform. Your responsibilities include developing security controls, integrating security into CI/CD pipelines, and conducting security assessments. Ideal candidates should have a Bachelor's degree in Computer Science and expertise in GCP security tools. Join us to lead secure development practices in a dynamic environment.
Sugama Technologies LTD is seeking an experienced DevSecOps Engineer specializing in Google Cloud Platform (GCP). In this role, you'll ensure the security of our software development processes through the implementation of Rego policies and Terraform to manage GCP resources efficiently. The ideal candidate will have a Bachelor's degree in Computer Science or Information Security, strong familiarity with GCP security tools, and proven experience in DevSecOps roles. Join us to drive secure GCP development initiatives forward.
06/06/2026
Full time
Sugama Technologies LTD is seeking an experienced DevSecOps Engineer specializing in Google Cloud Platform (GCP). In this role, you'll ensure the security of our software development processes through the implementation of Rego policies and Terraform to manage GCP resources efficiently. The ideal candidate will have a Bachelor's degree in Computer Science or Information Security, strong familiarity with GCP security tools, and proven experience in DevSecOps roles. Join us to drive secure GCP development initiatives forward.
Experience in Kubernetes. Experience in architecting and developing the actual kind of API layer, like rest APIs. Standard platform engineering building, like infrastructure zip code, contextualize that to the use of the team, orchestrate that using a cross plane and make it available for like all activities from configuring provisioning to rest API effectively. GCP knowledge Cloud and AWS experience
28/05/2026
Full time
Experience in Kubernetes. Experience in architecting and developing the actual kind of API layer, like rest APIs. Standard platform engineering building, like infrastructure zip code, contextualize that to the use of the team, orchestrate that using a cross plane and make it available for like all activities from configuring provisioning to rest API effectively. GCP knowledge Cloud and AWS experience
Job responsibilities: • Leading the designing and implementing of automated security tools throughout the product pipeline • Partnering with product team to drive shift-left security strategy preventing vulnerabilities in products early in development phase in the SDLC • Perform threat modeling and risk assessments to identify potential vulnerabilities and develop mitigation strategies • Conduct continuous application security testing, guide security champions and dev team and coordinate remediation efforts • Responsible for analyzing security of applications and services, identifying risks and compliance gaps, continuously seeking to improve compliance with established standards • High level understanding of application and network zero-trust journey • Advancing a culture of security by creating and sharing the vision through presentations, effective influence, and leveraging management support as needed. Required qualifications, capabilities, and skills • 9 to 10 years of relevant experience in Application and cloud security with secure SDLC working with distributed enterprise applications. • In-depth knowledge of security controls and testing techniques for each phase of the SDLC, including planning, design, development, testing, and deployment • Establishing vulnerability triage meetings with development teams to guide remediation of SAST, SCA, DAST, IAST vulnerabilities • Extensive knowledge of threat modeling methodologies and experience conducting threat modeling exercises for applications • Knowledge of core application security principles, common security vulnerability classes, their root causes and mitigations • Proven knowledge of designing and implementing AWS cloud security controls, and services • Build security metrics to track the effectiveness of our security excellenceprograms
28/05/2026
Full time
Job responsibilities: • Leading the designing and implementing of automated security tools throughout the product pipeline • Partnering with product team to drive shift-left security strategy preventing vulnerabilities in products early in development phase in the SDLC • Perform threat modeling and risk assessments to identify potential vulnerabilities and develop mitigation strategies • Conduct continuous application security testing, guide security champions and dev team and coordinate remediation efforts • Responsible for analyzing security of applications and services, identifying risks and compliance gaps, continuously seeking to improve compliance with established standards • High level understanding of application and network zero-trust journey • Advancing a culture of security by creating and sharing the vision through presentations, effective influence, and leveraging management support as needed. Required qualifications, capabilities, and skills • 9 to 10 years of relevant experience in Application and cloud security with secure SDLC working with distributed enterprise applications. • In-depth knowledge of security controls and testing techniques for each phase of the SDLC, including planning, design, development, testing, and deployment • Establishing vulnerability triage meetings with development teams to guide remediation of SAST, SCA, DAST, IAST vulnerabilities • Extensive knowledge of threat modeling methodologies and experience conducting threat modeling exercises for applications • Knowledge of core application security principles, common security vulnerability classes, their root causes and mitigations • Proven knowledge of designing and implementing AWS cloud security controls, and services • Build security metrics to track the effectiveness of our security excellenceprograms
Infrastructure as Code (IaC): o Design, implement, and manage infrastructure as code using Terraform for GCP environments. o Ensure infrastructure configurations are scalable, reliable, and follow best practices. GCP Platform Management: o Architect and manage GCP environments, including compute, storage, and networking components. o Collaborate with cross-functional teams to understand requirements and provide scalable infrastructure solutions. Vertex AI and BigQuery: o Hands-on experience with Vertex AI for generative AI solutions and BigQuery for data storage and analytics. o Work closely with data scientists and AI specialists to integrate and optimize solutions using Vertex AI on GCP. o Implement and manage machine learning pipelines and models within the Vertex AI environment. Wiz Security Control Integration: o Integrate and configure Wiz Security Control for continuous security monitoring and compliance checks within GCP environments. o Collaborate with security teams to implement and enhance security controls.
28/05/2026
Full time
Infrastructure as Code (IaC): o Design, implement, and manage infrastructure as code using Terraform for GCP environments. o Ensure infrastructure configurations are scalable, reliable, and follow best practices. GCP Platform Management: o Architect and manage GCP environments, including compute, storage, and networking components. o Collaborate with cross-functional teams to understand requirements and provide scalable infrastructure solutions. Vertex AI and BigQuery: o Hands-on experience with Vertex AI for generative AI solutions and BigQuery for data storage and analytics. o Work closely with data scientists and AI specialists to integrate and optimize solutions using Vertex AI on GCP. o Implement and manage machine learning pipelines and models within the Vertex AI environment. Wiz Security Control Integration: o Integrate and configure Wiz Security Control for continuous security monitoring and compliance checks within GCP environments. o Collaborate with security teams to implement and enhance security controls.
Job responsibilities: • Leading the designing and implementing of automated security tools throughout the product pipeline • Partnering with product team to drive shift-left security strategy preventing vulnerabilities in products early in development phase in the SDLC • Perform threat modeling and risk assessments to identify potential vulnerabilities and develop mitigation strategies • Conduct continuous application security testing, guide security champions and dev team and coordinate remediation efforts • Responsible for analyzing security of applications and services, identifying risks and compliance gaps, continuously seeking to improve compliance with established standards • High level understanding of application and network zero-trust journey • Advancing a culture of security by creating and sharing the vision through presentations, effective influence, and leveraging management support as needed. Required qualifications, capabilities, and skills • 9 to 10 years of relevant experience in Application and cloud security with secure SDLC working with distributed enterprise applications. • In-depth knowledge of security controls and testing techniques for each phase of the SDLC, including planning, design, development, testing, and deployment • Establishing vulnerability triage meetings with development teams to guide remediation of SAST, SCA, DAST, IAST vulnerabilities • Extensive knowledge of threat modeling methodologies and experience conducting threat modeling exercises for applications • Knowledge of core application security principles, common security vulnerability classes, their root causes and mitigations • Proven knowledge of designing and implementing AWS cloud security controls, and services • Build security metrics to track the effectiveness of our security excellenceprograms
28/05/2026
Full time
Job responsibilities: • Leading the designing and implementing of automated security tools throughout the product pipeline • Partnering with product team to drive shift-left security strategy preventing vulnerabilities in products early in development phase in the SDLC • Perform threat modeling and risk assessments to identify potential vulnerabilities and develop mitigation strategies • Conduct continuous application security testing, guide security champions and dev team and coordinate remediation efforts • Responsible for analyzing security of applications and services, identifying risks and compliance gaps, continuously seeking to improve compliance with established standards • High level understanding of application and network zero-trust journey • Advancing a culture of security by creating and sharing the vision through presentations, effective influence, and leveraging management support as needed. Required qualifications, capabilities, and skills • 9 to 10 years of relevant experience in Application and cloud security with secure SDLC working with distributed enterprise applications. • In-depth knowledge of security controls and testing techniques for each phase of the SDLC, including planning, design, development, testing, and deployment • Establishing vulnerability triage meetings with development teams to guide remediation of SAST, SCA, DAST, IAST vulnerabilities • Extensive knowledge of threat modeling methodologies and experience conducting threat modeling exercises for applications • Knowledge of core application security principles, common security vulnerability classes, their root causes and mitigations • Proven knowledge of designing and implementing AWS cloud security controls, and services • Build security metrics to track the effectiveness of our security excellenceprograms
Infrastructure as Code (IaC): o Design, implement, and manage infrastructure as code using Terraform for GCP environments. o Ensure infrastructure configurations are scalable, reliable, and follow best practices. GCP Platform Management: o Architect and manage GCP environments, including compute, storage, and networking components. o Collaborate with cross-functional teams to understand requirements and provide scalable infrastructure solutions. Vertex AI and BigQuery: o Hands-on experience with Vertex AI for generative AI solutions and BigQuery for data storage and analytics. o Work closely with data scientists and AI specialists to integrate and optimize solutions using Vertex AI on GCP. o Implement and manage machine learning pipelines and models within the Vertex AI environment. Wiz Security Control Integration: o Integrate and configure Wiz Security Control for continuous security monitoring and compliance checks within GCP environments. o Collaborate with security teams to implement and enhance security controls.
28/05/2026
Full time
Infrastructure as Code (IaC): o Design, implement, and manage infrastructure as code using Terraform for GCP environments. o Ensure infrastructure configurations are scalable, reliable, and follow best practices. GCP Platform Management: o Architect and manage GCP environments, including compute, storage, and networking components. o Collaborate with cross-functional teams to understand requirements and provide scalable infrastructure solutions. Vertex AI and BigQuery: o Hands-on experience with Vertex AI for generative AI solutions and BigQuery for data storage and analytics. o Work closely with data scientists and AI specialists to integrate and optimize solutions using Vertex AI on GCP. o Implement and manage machine learning pipelines and models within the Vertex AI environment. Wiz Security Control Integration: o Integrate and configure Wiz Security Control for continuous security monitoring and compliance checks within GCP environments. o Collaborate with security teams to implement and enhance security controls.
Experience in Kubernetes. Experience in architecting and developing the actual kind of API layer, like rest APIs. Standard platform engineering building, like infrastructure zip code, contextualize that to the use of the team, orchestrate that using a cross plane and make it available for like all activities from configuring provisioning to rest API effectively. GCP knowledge Cloud and AWS experience
28/05/2026
Full time
Experience in Kubernetes. Experience in architecting and developing the actual kind of API layer, like rest APIs. Standard platform engineering building, like infrastructure zip code, contextualize that to the use of the team, orchestrate that using a cross plane and make it available for like all activities from configuring provisioning to rest API effectively. GCP knowledge Cloud and AWS experience