Job Description:

We are currently looking for a DevSecOps Engineer for a Defence company in Southampton on an initial 6-month contract.

Day Rate: £780 per day
IR35: Inside
Location: Southampton - min 3 days per week onsite
Duration: 6 months
Clearance: Will need a BPSS check, they will ideally already hold an SC or UKSV DV

DevSecOps Engineer required to join our Defence Information Advantage team to drive best practice in end-to-end SDLC and deployment automation.

The Defence domain represents many unique and cutting-edge challenges in DevSecOps, MLOps and utilisation of cloud for example updating deployed equipment in a safe and secure manner. We therefore seek an innovative thought-leader who can set technical direction and coach others to push the envelope on the art of the possible.

The DevSecOps Engineer will exploit the best of cloud and DevSecOps technologies to drive increased rapidity in deployment automation whilst applying SRE principles to the continual operation of live systems to increase up-time.

They will oversee code releases, deployments, and support operational systems. The role calls for both technical skills and soft skills to communicate effectively with colleagues at different levels in the organization in a collaborative and holistic environment.

Areas of Responsibility:

• Join and contribute to agile ceremonies following Scrum, Kanban or SAFe Agile.
• Coach team members in DevSecOps.
• Work with product owners and software developers to schedule releases and implement CI/CD pipelines.
• Work with security architects to ensure the products and services are secure by design.
• Work with quality engineers to ensure the products and services are of high quality.
• Effectively implement changes to products and services.
• Participate and contribute to code reviews.
• Support operational systems, troubleshoot and resolve issues.

Knowledge and Experience Required:

As a DevSecOps Engineer, you will have a degree level qualification in a STEM subject, or an equivalent level of practical experience.

Depending on your level of ability/experience, you will have familiarity, competence or expertise in a subset of these areas:

Cloud technologies:

• AWS primarily
• Azure and GCP beneficial

Cyber security

• Vulnerability management (e.g. tenable)
• IDAM (e.g Azure AD, Keycloak)
• Vulnerability scanning, static and dynamic analysis (e.g. SonarQube)
• Network security including the secure provision of certificates and tokens

Virtualisation and Containerisation

• Containerisation (e.g. Docker, Podman)
• Container management (e.g. Kubernetes)
• Experience in GPU containerisation (e.g. NVIDIA Container Toolkit, Run:AI)  

Architectural styles

• Microservices
• Serverless
• Edge compute
• APIs (both RESTful and Protobuf GRPC)
• Stream based pub/sub systems (including Kafka and MQTT)

DevSecOps tooling

• Version control (e.g. Git)
• Continuous Integration/Deployment (e.g. Gitlab CI/CD)
• Infrastructure as code (e.g. Terraform, Puppet, Ansible)
• Linux shell scripting
• Experience in any programming languages useful in automation like Python or Rust.
• SRE analysis tools like Prometheus, Grafana and Elastic Search.

Beyond your technical skills, you will be proactive and able to communicate effectively with a variety of stakeholders. You will work well alone or as part of a team and grasp opportunities. You will be curious and seek out the best approach/solution/tool for the job at hand.

You’ll need to be able to draw on previous experiences of DevSecOps roles and be able to demonstrate a clear commitment to Continuous Improvement and Learning from Experience. Experience of successful DevSecOps implementation within the defence industry is a bonus!