Back to search
Job Title: DevSecOps Security Engineer
Duration: 6 Months (Possibility for extension)
Location: Slough/Hybrid (2 days per week on site)
Rate: 700 inside umbrella
Are you ready to shape the future of mobile security? Join a dynamic and diverse team as a DevSecOps Security Engineer with our client, the UK's leading virtual network operator. With a history of disrupting the mobile industry and a commitment to customer satisfaction, this organisation values innovation and collaboration.
About the Team:
As part of the Engineering team, you will be involved in managing and operating bespoke IT solutions that are vital to the organisation's business services. The Run and Operate Chapter is responsible for the infrastructure that powers engineering systems and applications. Working within the DevSecOps squad, you will collaborate with highly skilled engineers to ensure security is integrated at every level.
About the Role:
- In your role as a DevSecOps Security Engineer, you will be pivotal in deploying secure solutions across various platforms. Your responsibilities will include:
- Managing security aspects of the infrastructure and developing an evolving programme to address prioritised security concerns.
- Identifying threats and risks while implementing effective solutions and mitigations.
- Incorporating security checks into CI/CD pipelines to enhance code security.
- Validating planned changes for compliance with best practises, in collaboration with the Cyber Security Team.
Skills and Experience Required:
We're looking for candidates with:
- Significant commercial experience with cloud and SaaS security improvement projects.
- Proficiency in cloud providers such as AWS and Azure.
- Experience in CI/CD pipelines and integrating security tooling.
- Familiarity with SAST and other techniques to improve code security.
- Competence in using AWS Security Hub, Azure Security Centre, and other security tools.
Nice to Have:
- Knowledge of source code management and branching strategies, particularly with GitHub and GitHub Actions.
- Experience managing Splunk in a commercial environment, including defining data streams and creating dashboards.
- Skills in maintaining infrastructure using IaC tooling.
- Automation experience with tools and languages like AWS CLI, Python, PowerShell, or Azure CLI.
- Exposure to containerisation technologies like Docker and Kubernetes.
- Familiarity with Continuous Integration and Deployment techniques, including GitHub Actions.
Key Responsibilities:
- Be an active team player and embody the organisation's values.
- Implement agreed security improvements on key platforms.
- Serve as the subject matter expert for infrastructure security.
- Collaborate with application development teams to enhance application security.
- Present business justifications for security improvements to stakeholders in a clear, articulate manner.
- Share your knowledge and expertise with squad members.
Key Stakeholders:
Run & Operate Chapter Lead
DevSecOps Squad
Cyber Security Team
Why Join Us?
By becoming part of our client's organisation, you will have the opportunity to contribute to a small yet mighty team where your voice is valued. Enjoy the flexibility of a blended working environment and the chance to work with cutting-edge technologies. If you're passionate about security and eager to make a difference in the mobile industry, we'd love to hear from you!
Pontoon is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you.
