DevSecOps Engineer
Hybrid - 3 days a week
Due to the nature the Company and work must be eligible for UK Security Clearance (SC)
We are working with a leading UK technology and engineering organisation at the forefront of national security, defence, and advanced innovation. They deliver mission-critical solutions that give customers a decisive information advantage in complex, high-stakes environments.
They are now seeking a DevSecOps Engineer to join a specialist team tackling some of the most challenging problems in modern technology spanning across cloud, security, automation, and AI/ML operations.
You'll operate at the intersection of cloud engineering, cyber security, and reliability, working on problems such as:
- Securely updating deployed systems in sensitive environments
- Scaling and maintaining resilient platforms under operational pressure
- Applying DevSecOps and SRE principles to mission-critical systems
Required responsibilities
- Drive end-to-end DevSecOps best practice across the SDLC
- Design and implement CI/CD pipelines and deployment automation
- Apply Site Reliability Engineering (SRE) principles to improve system uptime and performance
- Support live operational systems, troubleshooting and resolving issues
- Collaborate across engineering, security, and product teams to deliver secure, high-quality solutions
- Act as a technical leader and mentor, helping teams adopt modern DevSecOps approaches
Key skills required
Cloud Platforms: Strong experience with AWS (primary), with exposure to Azure and/or GCP
DevSecOps & Automation: End-to-end ownership of CI/CD pipelines (GitLab or similar), Infrastructure as Code (Terraform, Ansible, Puppet), and Linux-based scripting
Security Engineering: Hands-on with vulnerability management (e.g. Tenable), IAM (Azure AD, Keycloak), secure networking (certificates, tokens), and code scanning (e.g. SonarQube)
Containerisation & Orchestration: Solid experience with Docker/Podman and Kubernetes, with exposure to GPU/container workloads (desirable)
Architecture & Integration: Experience designing microservices, serverless, and edge architectures, with strong capability across APIs (REST/gRPC) and event-driven systems (Kafka, MQTT)
Observability & SRE: Familiar with Prometheus, Grafana, Elastic, applying SRE principles to improve system reliability, uptime, and performance
Programming & Automation: Ability to script and automate using Python (or similar languages such as Rust)