As a DevSecOps Engineer, you'll be a hands-on contributor to the design, build, and operation of our internal platform. This is a delivery-focused role, working closely with SRE, Cloud, and Application Security teams to embed security controls, guardrails, and best practices directly into tooling, pipelines, and infrastructure.
You'll help define how security is applied at scale in a pragmatic, developer-friendly way, influencing engineering culture through code, automation, and clear technical standards—raising the baseline for security and operational excellence across the organisation.
You'll work with a modern, cloud-native platform, including:
Cloud & Networking: AWS (multi-account, IAM, VPC, managed services), hybrid/on-prem connectivity
Containers & Orchestration: Docker, Kubernetes (EKS, ECS)
Infrastructure as Code: OpenTofu, Terragrunt, CloudFormation
CI/CD: GitLab CI, reusable components, self-hosted runners
Security & Identity: Microsoft Entra, AWS IAM, OIDC, secrets management, policy-as-code
Observability: Centralised logging, metrics, tracing (e.g. Datadog, OpenTelemetry)
Platform Automation: Declarative configuration and infrastructure management
Internal Tooling: Developer-facing tools and services built with Python, Go, and modern frontend frameworks
Version Control: Git, merge requests, and code review workflows
We value strong fundamentals over specific tools—if you understand the principles, you'll thrive here.
Design, build, and operate secure cloud and platform capabilities
Embed security controls across the software delivery lifecycle by default
Build and maintain fast, reliable, secure CI/CD pipelines and reusable components
Automate security, compliance, and operational checks
Partner with engineering teams to remove friction and improve workflows
Contribute to platform architecture, standards, and technical direction
Promote ownership, continuous improvement, and pragmatic DevSecOps practice