DevOps Engineer

My client, a major Energy Business are currently seeking a DevOps Engineer with experience in Security for a long term project, focusing on the development of a brand new function. You would be working in a highly capable team with a large degree of autonomy.

This role is largely remote, with very occasional business travel (Around 5 days per month) when requested by the customer. Rates between €450-550 per day. For UK based consultants, this role is Outside IR35.

Required key competencies and qualifications:

Skill Requirements Must-have competencies / Must-have skills

• Implement security solutions ensuring integrity, confidentiality, and availability of systems and data

• Experience with Infrastructure-as-Code (IaC) tools like Terraform

• Design and implement security measures for infrastructure in hybrid environments

• Evaluate, select, and implement security tools for cloud and on-premise environments

• Apply networking skills to secure communications, data flows, and networks (firewalls, VPNs, segmentation)

• Develop and document security processes, including vulnerability management and incident response

• Collaborate with Engineering, DevOps, and IT teams to integrate security into the development lifecycle

• Deep understanding of asymmetric encryption, particularly certificate hierarchies for establishing trust and secure communication

• Identify, assess, and mitigate security risks in cloud and on-premise environments

• Assist with audits and security policy reviews

• Experience with CI/CD tools like ArgoCD

• Experience with container security in Kubernetes and Docker environments

• Understand the responsibility of having a security role in the critical infrastructure

Must-have language skills

• Fluent English in speech and writing (at least B2).

Preferred Competencies and skills

• Experience in German language to understand ISO certificate documents

• Familiarity with CI/CD pipeline security and automated security testing

• Experience with logging, monitoring, and alerting tools in cloud environments (e.g., Prometheus, Loki Stack)

• Familiarity with encryption practices (e.g., data-at-rest, data-in-transit, key management systems)

• Familiarity with Software Composition Analysis (SCA) tools and practices

• Proficiency in Static Application Security Testing (SAST)

Interviews are happening as soon as next week, and my client is looking to onboard someone as soon as February 1st, 2025.

If you are interested, please send me an up to date CV and time to speak at your earliest convenience.