SC Cleared DevSecOps engineer

Location: Corsham
Type: Contract
Clearance: Active SC (Security Check) Clearance required
Salary / Rate: £550-£675 DOE

We are seeking a highly skilled and Security Cleared (SC) DevSecOps Engineer to join our dynamic team. The ideal candidate will have a strong background in DevOps principles, with a specific focus on embedding security throughout the software development lifecycle. You will play a pivotal role in building, deploying and maintaining secure, scalable infrastructure and applications for mission-critical environments.

• Design, implement and manage secure CI/CD pipelines using industry best practices

• Embed security at every stage of the DevOps lifecycle (shift-left security)

• Integrate security tools (SAST, DAST, secrets management, etc.) into development workflows

• Collaborate with development, infrastructure and security teams to ensure compliance with governance and regulatory requirements

• Automate infrastructure provisioning using Infrastructure as Code (IaC) tools such as Terraform or CloudFormation

• Monitor systems and applications for performance, security and reliability

• Assist in incident response and vulnerability remediation processes

• Provide guidance and mentorship on secure coding and DevSecOps practices

• Active SC Clearance (mandatory)

• Strong experience with DevOps tools such as Jenkins, GitLab CI, or Azure DevOps

• Proven experience with containerisation (Docker, Kubernetes) and orchestration platforms

• Deep understanding of security principles in cloud environments (AWS, Azure, or GCP)

• Proficiency with Infrastructure as Code (Terraform, Ansible, or similar)

• Experience with automated security testing and compliance tools (e.g., SonarQube, OWASP ZAP, Trivy, Aqua Security)

• Familiarity with monitoring and logging tools such as Prometheus, Grafana, ELK, or Splunk

• Scripting knowledge (Python, Bash, or PowerShell)

• Experience working within government or defence sectors

• Knowledge of compliance frameworks such as ISO 27001, NCSC guidelines or Cyber Essentials Plus

• Certifications such as AWS Certified DevOps Engineer, CKA, CISSP, or similar

• Familiarity with Zero Trust architectures and secure supply chain practices