FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
DevSecOps Engineer
Law Business ResearchDevSecOps Engineer responsible for securing cloud infrastructure and applications at Centellic. Collaborating with teams to embed security practices in development and operations.
Tech Stack
Tools & technologiesAzureCloudKubernetesPythonTerraform
About the role
Key responsibilities & impact- Ensure the security of our cloud‑hosted infrastructure, applications, and CI/CD pipelines.
- Embed security best practices throughout the software delivery lifecycle.
- Work across our infrastructure landscape—Azure Kubernetes Services (AKS), Azure Virtual Machines, networking components, and application workloads.
- Champion secure‑by‑design principles, automate security controls, and maintain strong monitoring and incident response practices.
- Collaborate with Developers, Cloud Engineers, Product Managers, and external suppliers.
- Contribute to the continuous improvement of LBR’s cloud security posture, proactively identifying risks, recommending enhancements, and promoting a strong DevSecOps culture.
Requirements
What you’ll need- Strong ability to diagnose and resolve complex cloud and security issues across infrastructure, applications, and DevOps tooling.
- Ability to translate security requirements into practical engineering tasks.
- Clear communicator able to explain security concepts to non‑security stakeholders.
- Works calmly under pressure with strong time‑management skills.
- Curious, proactive, and able to independently identify improvements.
- Security best practices for Azure, including networking, RBAC, managed identities, logging, and monitoring.
- Kubernetes security: network policies, PodSecurityStandards, RBAC, image security, secrets, ingress security, and high‑availability configurations.
- Terraform and Terraform‑security concepts (policies, modules, scanning tools).
- Azure DevOps CI/CD, including YAML pipelines, secure build pipelines, artifact management, and release governance.
- Container technologies: container hardening, image optimisation, multi‑stage builds, secure base image selection.
- Trivy (or similar), dependency scanning, and SAST/DAST tools.
- Scripting with Python, Bash, or PowerShell for automation.
- Git and branching strategies with a security‑focused approach.
- Knowledge of WAF, API security, OWASP Top 10, and common cloud‑security frameworks.
- WAF rules management, including creation, tuning, and monitoring.
- SSL/TLS configuration best practices, certificate lifecycle management.
- Experience with Cloudflare security features including WAF, SSL, and Zero Trust options.
Benefits
Comp & perks- Eye care
- Employee Assistance Programme
- A day off for your birthday
- Pension (4% employer contribution and 4% employee contribution)
- Life assurance
- Cycle to work scheme
- Season ticket loan
- £350 annual wellbeing allowance to contribute to gym memberships or fitness classes
- Puregym access
- Perks at work platform access
- Private healthcare
- Company socials
- Access to Employee Affinity Networks
- Mentoring scheme
- Volunteering Day
- Mortgage Advice
- Work from anywhere (2 weeks)
- Generous parental leave
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
cloud securityKubernetes securityTerraformAzure DevOps CI/CDcontainer hardeningscripting with Pythonscripting with Bashscripting with PowerShelldependency scanningWAF rules management
Soft Skills
diagnose complex issuesclear communicatortime-managementcuriousproactiveindependent improvement identificationcalm under pressurecollaborationsecurity concept explanationstrong monitoring practices