Social network you want to login/join with:
Client:
Shackleton Duke Group
Location:
Leeds, United Kingdom
Job Category:
Other
EU work permit required:
Yes
Job Reference:
48f078283980
Job Views:
54
Posted:
22.01.2025
Expiry Date:
08.03.2025
Job Description:
* Reference Number: DevSecOps Engineer
* Location: Manchester / Leeds England
* Sector: Cyber Security
A leading Financial Services organisation is looking for a Lead DevSecOps Engineer to add value to the existing Information Security team. Banks and FS experience advantageous but not paramount. Client will accept individuals from Aviation, Airlines, Healthcare, and Pharma.
You must be eligible to live and work in the UK, with experience in a similar InfoSec/CS role within defined parameters in a highly regulated industry and be available to start at short notice.
Key skills for this role are: DevOps, SDLC, Vulnerability Management, Risk Management, and Risk Mitigation (in a DevSecOps environment).
* Work with the lead and domain engineers to formulate solutions
* Specify secure design requirements and acceptance criteria for DevOps or software development feature teams
* Define secure designs for security architecture building blocks
* Provide hands-on support during investigations and PoCs
* Take solution ownership from inception to delivery
* Embed security into DevOps and CI/CD
* Promote ‘security is codified’ as a key platform principle
* Contribute to security engineering patterns to be applied across multiple cloud providers and technologies
* Prepare engineering artefacts and own the lifecycle of those artefacts
* Review configurations and Infrastructure as Code for security weaknesses
* Support architects in taking designs through the appropriate governance and sign-off
* Act as an SME for security engineering related topics and issues
* Contribute to Threat Models
* Specialised working security engineering knowledge of two or more domains: Cloud, DevOps, AppSec, IAM, API, Networking, Crypto, Big Data
* Experience working in fast-paced agile environments is essential
* Preferably hold an industry-recognised security certification or degree: OSCP, GIAC
* Experience implementing industry best practice security standards in large organisations
* Detailed knowledge across a broad range of security domains
#J-18808-Ljbffr