Immediate

DevSecOps Engineer

Immediate

full-time

Posted on:

Location Type: Hybrid

Location: London • 🇬🇧 United Kingdom

Visit company website
AI Apply
Apply

Salary

💰 £84,000 per year

Job Level

Mid-LevelSenior

Tech Stack

AnsibleAWSCloudDNSDockerEC2FirewallsGrafanaJenkinsKubernetesLAMPLinuxMySQLNGINXPostgresPrometheusTCP/IPTerraform

About the role

  • Ensure platforms, products, and infrastructure are secure, resilient, and scalable while working closely with developers, QA, and product teams
  • Design, build, and maintain secure and scalable infrastructure in AWS using Terraform, Kubernetes, and Docker
  • Embed security into the CI/CD pipeline (Jenkins, GitHub Actions, CodePipeline) including SAST/DAST and dependency scanning
  • Collaborate with developers and product teams to promote DevSecOps practices, threat modelling, and secure coding standards
  • Conduct security assessments of applications, services, and infrastructure, identifying vulnerabilities and recommending remediation
  • Operate, tune, and extend monitoring, logging, and alerting systems for both performance and security
  • Manage DNS, CDN, caching, firewalls, load balancers, and WAFs to ensure secure and performant web delivery
  • Respond to and resolve security incidents and platform issues, driving continuous improvement and automation of responses
  • Keep documentation current, including runbooks, incident playbooks, and security procedures
  • Stay ahead of industry trends, emerging threats, and new DevSecOps tools

Requirements

  • Strong background in cloud infrastructure (AWS preferred: EC2, Lambda, RDS, Route53, ELBs, EKS)
  • Proven experience with CI/CD automation and infrastructure-as-code (Terraform, Ansible, Jenkins, Git/GitHub)
  • Proficiency in containerisation (Docker, Kubernetes) and managing production workloads
  • Solid understanding of security frameworks (CIS, OWASP) and common vulnerabilities (OWASP Top 10, misconfigurations, supply chain risks)
  • Experience with application and infrastructure monitoring (e.g., Prometheus, Grafana, ELK, CloudWatch)
  • Knowledge of Linux-based systems (LAMP stack, Nginx, Varnish, MySQL/Postgres, Mongo) with performance tuning and hardening experience
  • Strong grasp of networking and security protocols (TCP/IP, SSL/TLS, DNS, NAT, firewalls, load balancers, WAFs)
  • Familiarity with code security tools (SAST, DAST, dependency scanners) and integrating them into pipelines
  • Excellent problem-solving, communication, and cross-team collaboration skills
  • Disaster recovery process and GDPR
  • Desired: Knowledge on PCI DSS
Benefits
  • A relaxed working environment with regular socials including a summer festival
  • Supportive well-being initiatives and benefits, talks & workshops, and Mental Health First aiders & Champions
  • 25 days holiday plus a day for your birthday. Our offices will be closed between Christmas and New Year’s which are in addition to your annual entitlement
  • Tailored training and development through both our inhouse learning platform and LinkedIn Learning
  • A progressive and transparent culture focused on your development
  • Flexible / hybrid working plus early finish Fridays
  • Cycle to work scheme
  • Enhanced Family Policies including paternity, adoption and surrogacy leave. We also provide a pregnancy loss, fertility, and carers policy
  • Competitive pension plans and Life Assurance
  • A newly renovated modern office with lots of collaborative spaces
  • Active Diversity & Inclusion network, comprehensive well-being programs, and clear sustainability strategies

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
AWSTerraformKubernetesDockerCI/CDJenkinsGitHub ActionsAnsibleLinuxmonitoring
Soft skills
problem-solvingcommunicationcross-team collaboration