DevSecOps Engineer
For my International client I am seeking a DevSecOps Engineer to join the team on a long term contract assignment.This is hybrid role with mainly offsite working but you will also need to commit to some on-site working
Tasks and Responsibilities of the DevSecOps Engineer
* Plan, implement, upgrade DevSecOps pipelines.
* Facilitate the continuous delivery of IT applications by using Application Lifecycle Management and automation tools.
* Design DevSecOps API Security, Container Security and/or Cloud Security.
* Understanding of the integration strategies and patterns in cloud environments.
* Configures, and administers container-based infrastructure and applications.
* Define configuration management and deployment strategies for Cloud resources.
* Develop, and design software automation and scripts to orchestrate cloud and virtualization technologies with defined scope, schedule, and expectations with a focus on Operations.
* Provides subject matter expert technical support to customers using Cloud Platform products, solutions, and APIs with a focus on Operations.
* Design and implement DevSecOps capabilities (e.g., observability, continuous monitoring, traceability).
* Work with the development teams in resolving software and other related problems associated with the cloud deployment infrastructure and the code deployed onto platforms.
* Integration of CSA controls into CI/CD pipelines of containerised applications.
* Secure workload orchestration on CaaS with Kubernetes, including hardening and security posture management.
* Implementation and assurance of vulnerability and patch management via AIVM and Sysdig.
* Use of GovIS and SNOW for change management, reporting, and incident workflows.
* Enforcement of security policies and compliance monitoring for SitCen workloads.
Required skills and experience of the DevSecOps Engineer
* Master’s degree in IT with minimum 17 years of professional experience (or Bachelor’s degree with minimum 20 years of experience).
* At least one certification among: Certified DevSecOps Professional (CDP), AWS Certified DevOps Engineer – Professional, AWS Certified Security – Specialty, Certified Kubernetes Administrator (CKA), Certified Kubernetes Security Specialist (CKS), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certificate of Cloud Security Knowledge (CCSK).
* At least 2 years of hands-on experience with DevOps container, serverless, or orchestration technologies (e.g., Docker, Kubernetes, Ansible, Terraform, Buildpacks).
* At least 2 years of experience in cloud security architecture and implementation of security requirements in cloud environments.
* At least 2 years of experience with Application Lifecycle Management (ALM) and CI/CD tools such as Git, Jira, Bamboo, Nexus, GitLab, Jenkins, or Azure DevOps.
* Proven experience in designing, implementing, and managing CI/CD pipelines, release management processes, and automation in agile DevSecOps environments.
* Experience with containerised workloads and Kubernetes orchestration, including secure configuration, workload hardening, and platform operations.
* Strong knowledge of cloud platforms and services (e.g., AWS, Azure, Google Cloud, Kubernetes-based environments) and deployment strategies for cloud resources.
* Hands-on experience with automation, scripting, and infrastructure as code, using languages and tools such as Python, Bash, PowerShell, Terraform, YAML, or JSON.
* Experience with monitoring, observability, and continuous security monitoring tools such as Dynatrace, CloudWatch, Sentinel, Splunk, or similar platforms.
* Knowledge of secret management and security tooling (e.g., CyberArk, HashiCorp Vault) and vulnerability or patch management practices.
* Familiarity with change management, incident management, and operational workflows, including tools such as GovIS, SNOW, or similar platforms.
* Advanced English (C1) communication skills (written and spoken).