Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the integration of security best practices in AWS environments and CI/CD pipelines.
- Company: Join a public sector client focused on secure software development.
- Benefits: Enjoy flexible working with initial onsite training and remote options thereafter.
- Why this job: Be at the forefront of DevSecOps, making a real impact on security practices.
- Qualifications: Must have active SC Clearance and 8+ years in DevOps/DevSecOps with AWS expertise.
- Other info: Initial 6 weeks require 2 days onsite in Newcastle, then 1 day per month.
The predicted salary is between 48000 - 72000 £ per year.
Job Description
Public Sector Client | SC Mandatory
Highly skilled SC Cleared DevSecOps Engineer with deep expertise in infrastructure and pipeline integration within AWS environments. You will lead the integration of security best practices throughout the entire software development life cycle (SDLC), collaborating closely with development and operations teams to design, implement, and maintain secure infrastructure and CI/CD pipelines.
Location: Initial 6 weeks 2 days onsite Newcastle, thereafter 1 day per month.
Key Responsibilities:
- Design and implement secure infrastructure and CI/CD pipelines in AWS.
- Integrate security tools and practices throughout the SDLC, ensuring compliance with security regulations.
- Lead the deployment of security tools in CI/CD pipeline fragments (GitLab), including SAST, DAST, Threat Modelling, SCA, Container Security, and more.
- Automate infrastructure provisioning using Infrastructure as Code (IaC) tools such as AWS CloudFormation, Terraform, AWS CDK, Packer, and Ansible.
- Manage version control and branching strategies, and configure GitLab runners to support scalable, secure delivery.
- Collaborate with developers and operations teams to ensure secure, efficient, and automated deployment processes.
Required Skills & Experience:
- Security Clearance: Active SC Clearance (mandatory).
- Experience: 8+ years of DevOps/DevSecOps engineering, including implementing CI/CD pipelines across diverse environments and topologies within AWS.
- Programming Languages: Proficiency in Python, TypeScript, Node.js, Go, etc.
- Scripting Languages: Strong skills in Python, Shell Scripting, Perl, etc.
- Security Tooling: Hands-on experience integrating security scans into CI/CD pipelines, including SAST, DAST, Threat Modelling, SCA, and container security.
- Infrastructure as Code: Proven expertise with AWS CloudFormation, Terraform, CDK, Packer, and Ansible.
- Version Control: Deep understanding of Git workflows, branching strategies, and GitLab CI/CD configuration.
*RECRUITMENT CONSULTANCIES DO NOT CONTACT.*
SC Cleared DevSecOps Engineer (AWS, Infrastructure, CI/CD) employer: Layer7
Contact Detail:
Layer7 Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land SC Cleared DevSecOps Engineer (AWS, Infrastructure, CI/CD)
✨Tip Number 1
Make sure to showcase your SC clearance prominently in your discussions. Since it's mandatory for this role, emphasising your active status can set you apart from other candidates.
✨Tip Number 2
Familiarise yourself with the specific security tools mentioned in the job description, such as SAST and DAST. Being able to discuss your hands-on experience with these tools will demonstrate your expertise and readiness for the role.
✨Tip Number 3
Prepare to discuss your experience with Infrastructure as Code (IaC) tools like Terraform and AWS CloudFormation. Highlighting specific projects where you've successfully implemented these tools can illustrate your capabilities effectively.
✨Tip Number 4
Engage with the community around DevSecOps and AWS. Joining relevant forums or attending meetups can help you network with professionals in the field, potentially leading to valuable insights or referrals for the position.
We think you need these skills to ace SC Cleared DevSecOps Engineer (AWS, Infrastructure, CI/CD)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience with AWS, DevSecOps practices, and CI/CD pipelines. Use specific examples that demonstrate your expertise in security integration and infrastructure automation.
Craft a Strong Cover Letter: In your cover letter, emphasise your active SC Clearance and relevant experience. Discuss how your skills align with the job responsibilities, particularly in leading security tool deployments and collaborating with teams.
Showcase Relevant Projects: Include details of specific projects where you implemented security best practices in the SDLC or automated infrastructure provisioning. Highlight your use of tools like Terraform, AWS CloudFormation, and GitLab.
Proofread Your Application: Before submitting, carefully proofread your application for any errors or inconsistencies. Ensure that all technical terms are used correctly and that your application is clear and professional.
How to prepare for a job interview at Layer7
✨Showcase Your Security Knowledge
Make sure to highlight your understanding of security best practices and how you've integrated them into the SDLC in previous roles. Be prepared to discuss specific tools you've used, such as SAST and DAST, and how they improved security in your projects.
✨Demonstrate Your AWS Expertise
Since the role requires deep expertise in AWS, be ready to talk about your experience with AWS services and how you've designed secure infrastructure. Mention any specific projects where you implemented CI/CD pipelines using AWS tools like CloudFormation or Terraform.
✨Prepare for Technical Questions
Expect technical questions related to DevSecOps practices, CI/CD processes, and version control strategies. Brush up on your knowledge of Git workflows and be ready to explain how you've managed branching strategies in past projects.
✨Emphasise Collaboration Skills
This role involves working closely with development and operations teams, so be sure to share examples of how you've successfully collaborated in the past. Highlight any experiences where you led a team or facilitated communication between different departments.
