DevSecOps Engineer

For my International client I am seeking a DevSecOps Engineer to join the team on a long term contract assignment.This is hybrid role with mainly offsite working but you will also need to commit to some on-site working

Tasks and Responsibilities of the DevSecOps Engineer

• Plan, implement, upgrade DevSecOps pipelines.
• Facilitate the continuous delivery of IT applications by using Application Lifecycle Management and automation tools.
• Design DevSecOps API Security, Container Security and/or Cloud Security.
• Understanding of the integration strategies and patterns in cloud environments.
• Configures, and administers container-based infrastructure and applications.
• Define configuration management and deployment strategies for Cloud resources.
• Develop, and design software automation and scripts to orchestrate cloud and virtualization technologies with defined scope, schedule, and expectations with a focus on Operations.
• Provides subject matter expert technical support to customers using Cloud Platform products, solutions, and APIs with a focus on Operations.
• Design and implement DevSecOps capabilities (e.g., observability, continuous monitoring, traceability).
• Work with the development teams in resolving software and other related problems associated with the cloud deployment infrastructure and the code deployed onto platforms.
• Integration of CSA controls into CI/CD pipelines of containerised applications.
• Secure workload orchestration on CaaS with Kubernetes, including hardening and security posture management.
• Implementation and assurance of vulnerability and patch management via AIVM and Sysdig.
• Use of GovIS and SNOW for change management, reporting, and incident workflows.
• Enforcement of security policies and compliance monitoring for SitCen workloads.

Required skills and experience of the DevSecOps Engineer

• Master’s degree in IT with minimum 17 years of professional experience (or Bachelor’s degree with minimum 20 years of experience).
• At least one certification among: Certified DevSecOps Professional (CDP), AWS Certified DevOps Engineer – Professional, AWS Certified Security – Specialty, Certified Kubernetes Administrator (CKA), Certified Kubernetes Security Specialist (CKS), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certificate of Cloud Security Knowledge (CCSK).
• At least 2 years of hands-on experience with DevOps container, serverless, or orchestration technologies (e.g., Docker, Kubernetes, Ansible, Terraform, Buildpacks).
• At least 2 years of experience in cloud security architecture and implementation of security requirements in cloud environments.
• At least 2 years of experience with Application Lifecycle Management (ALM) and CI/CD tools such as Git, Jira, Bamboo, Nexus, GitLab, Jenkins, or Azure DevOps.
• Proven experience in designing, implementing, and managing CI/CD pipelines, release management processes, and automation in agile DevSecOps environments.
• Experience with containerised workloads and Kubernetes orchestration, including secure configuration, workload hardening, and platform operations.
• Strong knowledge of cloud platforms and services (e.g., AWS, Azure, Google Cloud, Kubernetes-based environments) and deployment strategies for cloud resources.
• Hands-on experience with automation, scripting, and infrastructure as code, using languages and tools such as Python, Bash, PowerShell, Terraform, YAML, or JSON.
• Experience with monitoring, observability, and continuous security monitoring tools such as Dynatrace, CloudWatch, Sentinel, Splunk, or similar platforms.
• Knowledge of secret management and security tooling (e.g., CyberArk, HashiCorp Vault) and vulnerability or patch management practices.
• Familiarity with change management, incident management, and operational workflows, including tools such as GovIS, SNOW, or similar platforms.
• Advanced English (C1) communication skills (written and spoken).