FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Core Competencies
Role fitCore Competencies
Use this summary to align your resume positioning with the role.
Demonstrates expertise in DevSecOps practices, including the design and implementation of secure CI/CD pipelines, Infrastructure as Code, and automated security controls. Proficient in integrating security tooling and maintaining compliance frameworks while fostering collaboration and mentoring within engineering teams.
Highest-signal resume keywords
DevSecOps PracticesCI/CD Pipeline DesignInfrastructure as CodeGitHub ActionsCloud Security Principles
ATS Keywords
Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills
DevSecOpsCI/CD PipelineInfrastructure as CodePolicy as CodeSASTVulnerability ManagementCloud SecurityAutomation SolutionsConfiguration Drift RemediationCybersecurity Principles
Soft Skills
Analytical SkillsProblem-Solving SkillsStakeholder EngagementCommunication SkillsCollaboration Skills
Tools & Technologies
GitHubGitHub ActionsTerraformBicepCloudFormationAikidoN8nISO 27001NIST CSFMITRE ATT&CK
Industry Keywords
CybersecurityInformation TechnologySoftware EngineeringOperational ExcellenceContinuous Improvement
Tech Stack
Tools & technologiesAWSAzureCloudCyber SecurityGoogle Cloud PlatformTerraform
About the role
Key responsibilities & impact- Designing, implementing and improving enterprise DevSecOps practices across development and infrastructure teams
- Building and maintaining secure CI/CD pipelines that incorporate automated security controls and quality gates
- Administering and governing GitHub repositories, workflows and security controls
- Implementing security controls through Infrastructure as Code (IaC) and platform automation
- Developing and maintaining Policy as Code capabilities to enforce security, compliance and organisational standards
- Integrating and managing security tooling, including SAST, software composition analysis and vulnerability scanning capabilities
- Supporting and enhancing our application security platforms, including Aikido and related security tooling
- Establishing controls to detect, report and remediate configuration drift across cloud and infrastructure environments
- Implementing software supply chain security controls and secure development practices
- Designing and delivering automation workflows using tools such as GitHub Actions, n8n and other orchestration platforms
- Automating security assurance activities including peer review enforcement, repository governance, branch protections and security review processes
- Supporting developers and delivery teams to adopt secure software development lifecycle (SSDLC) practices
- Working with security and governance teams to translate security requirements into automated technical controls
- Participating in architecture reviews, code reviews and solution design activities
- Supporting cybersecurity governance, risk management and continuous improvement initiatives
- Contributing to security uplift projects and operational excellence programmes across the organisation
Requirements
What you’ll need- 5+ years' experience in DevOps, DevSecOps, Platform Engineering, Security Engineering, Site Reliability Engineering or a similar role
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Software Engineering or related discipline
- Strong understanding of modern DevSecOps principles and secure software development lifecycle (SSDLC) practices
- Demonstrated experience designing and supporting CI/CD pipelines in enterprise environments
- Strong experience with GitHub, GitHub Actions and repository governance practices
- Hands-on experience implementing Infrastructure as Code using technologies such as Terraform, Bicep, CloudFormation or equivalent
- Experience implementing and maintaining Policy as Code controls and automated compliance frameworks
- Experience integrating security controls into software delivery pipelines
- Experience working with application security tooling including SAST, software composition analysis, secret detection and vulnerability management platforms
- Strong understanding of cloud security principles across Azure, AWS and GCP
- Experience designing and implementing automation solutions that improve operational efficiency and security outcomes
- Experience identifying, monitoring and remediating configuration drift across infrastructure environments
- Strong knowledge of cybersecurity principles, identity security, infrastructure security and cloud security
- Familiarity with security frameworks including ISO 27001, NIST CSF, ACSC Essential Eight, MITRE ATT&CK and government security frameworks
- Strong analytical, troubleshooting and problem-solving skills
- Excellent stakeholder engagement, communication and collaboration skills
- Ability to mentor team members and promote DevSecOps best practices across engineering teams
- Commercial awareness with an understanding of project delivery, operational outcomes and continuous improvement
Benefits
Comp & perks- social events
- chill-out spaces
- remote working
- flexi-hours
- professional development courses
