Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security governance and architecture for innovative web applications in a multi-cloud environment.
- Company: Dynamic tech firm focused on cutting-edge security practices.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Why this job: Shape the future of security in tech while making a real impact.
- Qualifications: Experience in DevSecOps, cloud platforms, and regulatory compliance.
- Other info: Join a collaborative team with exciting projects and career advancement potential.
The predicted salary is between 48000 - 72000 £ per year.
We are seeking a Senior DevSecOps Engineer to lead governance, architecture guidance, and assurance for Greenfield Web Application build across infrastructure security, Microsoft Azure, AWS, Kubernetes and key SaaS platforms. This role is pivotal in shaping technical blueprints, setting security standards, and ensuring regulatory compliance with Cyber Essentials Plus, ISO 27001, and Zero Trust principles. You will act as the glue between IT and platform teams to embed best practices, validate implementations, and support audit readiness across IaaS, PaaS, and SaaS environments.
Key Responsibilities
- Define and maintain multi‑cloud security standards and reference blueprints (e.g. Azure Policy/Initiatives, AWS Control Tower/SCPs)
- Own security architecture patterns and contribute to HLD/LLD, threat models, and risk assessments
- Set assurance criteria and control evidence requirements for internal teams and third‑party vendors
- Establish policy‑as‑code requirements and maintain an exceptions register with expiry and risk ownership
- Define identity and access control standards (Entra ID Conditional Access, MFA, PIM; AWS IAM federation)
- Govern SaaS security onboarding (SSO, OAuth governance, DLP controls, vendor assessments)
- Educate and influence teams through guidance, clinics, and coaching sessions
- Familiarity with IaaS, PaaS, SaaS risk models and audit frameworks
- Excellent written communication and facilitation skills to drive adoption and influence stakeholders
Additional Skills
- Certifications: AZ‑500, SC‑100, SC‑200, AZ‑700, AWS Security Specialty, CISSP (or equivalents)
- Experience with blueprint catalogues and architecture governance processes
- Working knowledge of containers/Kubernetes (AKS/EKS) policy models
While this role focuses on governance and assurance, hands‑on use may be required for validation:
- Azure: Policy/Initiatives, Defender for Cloud, Entra ID, PIM
- AWS: Control Tower, SCPs, Security Hub, GuardDuty, IAM
- Security & Monitoring: Microsoft Sentinel (KQL), Defender XDR, audit dashboards
- Documentation & Governance: Blueprint repositories, risk registers, ITSM/CAB records
If this role is of interest please send your CV to review ASAP.
Senior Devsecops Engineer - Outside IR35 employer: Experis
Contact Detail:
Experis Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Devsecops Engineer - Outside IR35
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at meetups. We all know that sometimes it’s not just what you know, but who you know that can land you that dream job.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to Azure, AWS, and Kubernetes. We want to see your hands-on experience and how you tackle real-world problems.
✨Tip Number 3
Prepare for interviews by brushing up on common DevSecOps scenarios and best practices. We recommend practising with friends or using mock interview platforms to get comfortable discussing your approach to security architecture and compliance.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who take that extra step to connect with us directly.
We think you need these skills to ace Senior Devsecops Engineer - Outside IR35
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the skills and experiences that match the Senior DevSecOps Engineer role. Highlight your experience with Azure, AWS, and any relevant certifications to catch our eye!
Showcase Your Projects: If you've worked on Greenfield builds or have experience in governance and architecture, make it known! We love seeing real-world examples of how you've implemented best practices in your previous roles.
Be Clear and Concise: When writing your application, keep it straightforward. Use bullet points for key achievements and avoid jargon unless it's necessary. We appreciate clarity as much as you do!
Apply Through Our Website: Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role without any hiccups.
How to prepare for a job interview at Experis
✨Know Your Tech Inside Out
Make sure you’re well-versed in the technologies mentioned in the job description, like Azure, AWS, and Kubernetes. Brush up on best practices for security architecture and be ready to discuss how you’ve implemented these in past projects.
✨Showcase Your Regulatory Knowledge
Since this role requires a strong regulatory background, be prepared to talk about your experience with Cyber Essentials Plus, ISO 27001, and Zero Trust principles. Have examples ready that demonstrate how you've ensured compliance in previous roles.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to solve hypothetical problems related to governance and assurance. Think through scenarios where you had to define security standards or manage risk assessments, and articulate your thought process clearly.
✨Communicate Effectively
Excellent written and verbal communication skills are crucial for this role. Practice explaining complex technical concepts in simple terms, as you’ll need to influence stakeholders and educate teams. Consider doing mock interviews to refine your delivery.
