DevSecOps Engineer - SC Cleared

DevSecOps Engineer

Rate:-700 - -740 a day (Inside IR35)

Location: Southampton

Working Pattern: Hybrid three days a week on site

Duration: 6 Months

Clearance: SC or DV Clearance required for this role

A defence technology consultancy are looking for a DevSecOps Engineer to join their team to drive best practice in end-to-end SDLC and deployment automation.

The Defence domain represents many unique and cutting-edge challenges in DevSecOps, MLOps and utilisation of cloud for example updating deployed equipment in a safe and secure manner.

The DevSecOps Engineer will exploit the best of cloud and DevSecOps technologies to drive increased rapidity in deployment automation whilst applying SRE principles to the continual operation of live systems to increase up-time.

You oversee code releases, deployments, and support operational systems. The role calls for both technical skills and soft skills to communicate effectively with colleagues at different levels in the organization in a collaborative and holistic environment.

Areas of Responsibility:

• Join and contribute to agile ceremonies following Scrum, Kanban or SAFe Agile.
• Coach team members in DevSecOps.
• Work with product owners and software developers to schedule releases and implement CI/CD pipelines.
• Work with security architects to ensure the products and services are secure by design.
• Work with quality engineers to ensure the products and services are of high quality.
• Effectively implement changes to products and services.
• Participate and contribute to code reviews.
• Support operational systems, troubleshoot and resolve issues.

Experience required:

As a DevSecOps Engineer, you will have a degree level qualification in a STEM subject, or an equivalent level of practical experience.

Depending on your level of ability/experience, you will have familiarity, competence or expertise in a subset of these areas:

Cloud technologies:

• AWS primarily
• Azure and GCP beneficial

Cyber security:

• Vulnerability management (e.g. tenable)
• IDAM (e.g Azure AD, Keycloak)
• Vulnerability scanning, static and dynamic analysis (e.g. SonarQube)
• Network security including the secure provision of certificates and tokens

Virtualisation and Containerisation:

• Containerisation (e.g. Docker, Podman)
• Container management (e.g. Kubernetes)
• Experience in GPU containerisation (e.g. NVIDIA Container Toolkit, Run:AI)
• Architectural styles

Microservices:

• Serverless
• Edge compute
• APIs (both RESTful and Protobuf GRPC)
• Stream based pub/sub systems (including Kafka and MQTT)

DevSecOps tooling:

• Version control (e.g. Git)
• Continuous Integration/Deployment (e.g. Gitlab CI/CD)
• Infrastructure as code (e.g. Terraform, Puppet, Ansible)
• Linux shell scripting
• Experience in any programming languages useful in automation like Python or Rust.
• SRE analysis tools like Prometheus, Grafana and Elastic Search.