2 jobs found

Two experienced DevSecOps Engineers are required to support defence-focused projects, driving best practice across secure software delivery, cloud platforms, and deployment automation. The role focuses on improving the speed, reliability, and security of systems throughout the full software development life cycle. These positions works with modern DevSecOps, cloud, and SRE practices in complex, security-critical environments. The Role The DevSecOps Engineers will design, build, and maintain secure CI/CD pipelines and cloud infrastructure, supporting both development teams and live operational systems. The role combines hands-on technical delivery with collaboration across engineering, security, and product teams. Key responsibilities include: * Managing code releases and automated deployments * Applying SRE principles to improve system reliability and uptime * Supporting and troubleshooting live systems * Working closely with developers, security architects, and quality engineers * Coaching team members on DevSecOps best practice Skills & Experience Essential * Experience in DevSecOps or similar roles * Strong experience with AWS (Azure or GCP beneficial) * CI/CD tooling (eg GitLab CI/CD) * Infrastructure as Code (eg Terraform, Ansible, Puppet) * Containerisation and orchestration (Docker, Kubernetes) * Linux and Scripting * Secure development and vulnerability management * Monitoring and observability tools (eg Prometheus, Grafana, Elastic) Beneficial * Cyber security tooling (eg Tenable, SonarQube, IDAM solutions) * Microservices, serverless, APIs, and event-driven architectures * GPU or edge computing environments * Automation languages such as Python or Rust * Experience in defence or highly regulated environments Security Clearance Due to the nature of the work, candidates must be eligible for SC clearance. This requires British citizenship and UK residency for the relevant period. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.

Security Platform Engineer (DevSecOps) - MOD/Defence Farnborough UK Security Clearance Required 70-75k Kubernetes, Splunk, Nessus. You'll own the security tooling across a live platform, not just monitor it. Working for a defence consultancy providing technical solutions to the MOD and Defence sectors, you will be working across a Kubernetes platform, responsible for deploying, running and improving the tools that provide visibility, detection and control. This is hands on and sits right between platform engineering and security, with a big focus on getting security embedded properly into how things are built and run. You'll spend your time securing Kubernetes environments, running and tuning Splunk for logging and threat detection, and managing Nessus to track and drive vulnerability remediation. A big part of the role is integrating security into CI/CD pipelines and automating as much as possible, whether that's through scripting or infrastructure as code. You'll also be working closely with DevOps and engineering teams to make sure security is part of the process, not something that gets added later. Alongside that, you'll keep configurations, artefacts and documentation in good shape and treated as code. Experience Required: Prior experience as a Security Engineer or Platform Engineer type role, with strong Kubernetes knowledge and experience in tools like Splunk and Nessus. You'll understand container security, have some scripting or automation capability, and be comfortable working with security frameworks . Awareness of threat frameworks like ATT&CK is useful. It would help if you've worked with other SIEM tools, Microsoft Defender or DevSecOps pipelines, and any exposure to threat modelling or security design. If you want a role where you're actually building and running the security layer across a Kubernetes platform, rather than just watching dashboards, this gives you that ownership from day one.