Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the integration of security in development processes and oversee DevSecOps practices.
- Company: Join a vital government department focused on enhancing national security.
- Benefits: Enjoy hybrid working, competitive pay, and the chance to make a real impact.
- Why this job: Be part of a mission-driven team that values innovation and security in tech.
- Qualifications: Must have active SC clearance and experience in DevSecOps roles.
- Other info: This is a 6-month contract with a daily rate of £650.
The predicted salary is between 46800 - 78000 £ per year.
Lead DevSecOps Engineer required to work with a government department. This is an initial 6 month contract, paying £650 per day, inside IR35, hybrid working (2-3 days per week onsite in London)
You will have active SC clearance prior to commencing this assignment
Summary and Responsibilities:
As a Lead DevSecOps Engineer, you will ensure that security is built into every part of the development lifecycle, specifically ensuring that security tooling (native and non-native) is properly embedded into CI/CD pipelines. You will be part of transformation programmes including tech debt replacement and migration, embedding security to ensure seamless integration of new systems/ features and workflows.
You will be responsible for ensuring that the replacement systems are security compliant, adhering to standards such as Secure by Design and GovAssure, utilising a shift left mentality to fix problems before production. This is as part of highly complex legacy replacements involving approximately 90,000 users.
Essential Skills and Experience Required:
- Strong hands-on expertise in DevSecOps practices, particularly security automation in CI/CD and infrastructure-as-code pipelines.
- Deep understanding of modern DevOps tooling (e.g., GitHub Actions/ CircleCI, Terraform, Kubernetes, Docker) with secure configurations.
- Experience implementing security controls in cloud-native environments (e.g., AWS or Azure) including IAM, network policies, and container security.
- Proven track record of using tools such as Snyk, Trivy, Checkov, OPA/Gatekeeper/ OWASP ZAP, or similar to enforce pipeline and platform security.
- Familiarity with compliance requirements (e.g., NIST, ISO 27001, CIS Benchmarks) and their implementation via code.
- Ability to lead and mentor teams on secure coding, threat modelling, and secure architecture patterns.
- Experience with monitoring, logging, and security telemetry platforms (e.g., Prometheus, Loki, ELK, XDR/SIEM integrations).
Please apply should you meet the above criteria
Attenti Consulting is acting as an Employment Business in relation to this vacancy.
Lead DevSecOps Engineer employer: Attenti
Contact Detail:
Attenti Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Lead DevSecOps Engineer
✨Tip Number 1
Make sure you highlight your experience with security practices in DevOps during any discussions. Emphasise how you've integrated security into the development lifecycle in previous roles.
✨Tip Number 2
Familiarise yourself with the specific technologies and tools mentioned in the job description. Being able to discuss your hands-on experience with these tools will set you apart from other candidates.
✨Tip Number 3
Since this role requires active SC clearance, be prepared to discuss your clearance status and any relevant security protocols you've worked with. This shows you're ready to hit the ground running.
✨Tip Number 4
Network with professionals in the DevSecOps community, especially those who have worked with government departments. They can provide insights and potentially refer you for the position, increasing your chances of landing the job.
We think you need these skills to ace Lead DevSecOps Engineer
Some tips for your application 🫡
Understand the Role: Familiarise yourself with the responsibilities of a Lead DevSecOps Engineer. Highlight your experience in integrating security into development processes and your understanding of government regulations.
Showcase Your Clearance: Since active SC clearance is required, make sure to mention your current clearance status prominently in your CV and cover letter. This will demonstrate your eligibility for the role.
Tailor Your CV: Customise your CV to reflect relevant skills and experiences that align with the job description. Focus on your DevSecOps expertise, hybrid working capabilities, and any previous work with government departments.
Craft a Compelling Cover Letter: Write a cover letter that not only outlines your qualifications but also expresses your enthusiasm for the role. Mention specific projects where you successfully implemented security measures in development.
How to prepare for a job interview at Attenti
✨Showcase Your Security Knowledge
As a Lead DevSecOps Engineer, it's crucial to demonstrate your understanding of security practices in the development lifecycle. Be prepared to discuss specific tools and methodologies you've used to integrate security into DevOps processes.
✨Highlight Your Experience with Government Projects
Since this role involves working with a government department, emphasise any previous experience you have in similar environments. Discuss how you navigated compliance and security requirements in those projects.
✨Prepare for Technical Questions
Expect technical questions that assess your expertise in DevSecOps practices. Brush up on relevant technologies, frameworks, and best practices, and be ready to provide examples of how you've implemented them in past roles.
✨Demonstrate Leadership Skills
As a lead engineer, you'll need to show that you can guide a team effectively. Prepare to discuss your leadership style, how you handle conflicts, and ways you've successfully mentored junior engineers in the past.
