We're seeking an experienced DevSecOps Engineer for a client on a Day-Rate contract basis. You will be responsible for embedding security practices throughout the development lifecycle while maintaining operational efficiency and reliability.
Key Responsibilities
* Implement and maintain CI/CD pipelines with integrated security controls
* Conduct infrastructure as code (IaC) security reviews
* Perform automated security testing, vulnerability scanning, and remediation
* Design and implement secure cloud infrastructure (AWS/Azure)
* Collaborate with development teams to build security awareness and capabilities
* Monitor and respond to security incidents and events
* Optimize container security for Kubernetes environments
* Create and maintain documentation for security practices and procedures
Required Skills & Experience
* 4+ years of experience in DevOps or Security Engineering roles
* Strong knowledge of cloud security best practices in AWS or Azure
* Experience with infrastructure as code tools (Terraform, CloudFormation)
* Proficiency with containerization technologies (Docker, Kubernetes)
* Experience implementing and maintaining CI/CD pipelines (Jenkins, GitLab CI, GitHub Actions)
* Familiarity with security scanning tools (SonarQube, OWASP ZAP, Trivy)
* Knowledge of compliance frameworks (ISO 27001, GDPR, SOC 2)
Desired Skills
* Security certifications (AWS Security, Azure Security, CISSP, etc.)
* Experience with service mesh technologies (Istio, Linkerd)
* Knowledge of secrets management solutions (HashiCorp Vault, AWS Secrets Manager)
* Experience with policy as code (OPA, Kyverno)
* Background in financial services or other regulated industries
Seniority level
Mid-Senior level
Employment type
Contract
Job function
Information Technology
Industries
IT Services and IT Consulting
#J-18808-Ljbffr