DevSecOps Engineer in Leeds

A rapidly growing technology-driven organisation is seeking a DevSecOps Engineer to strengthen security across cloud platforms and delivery pipelines. This role sits within a high-performing Platform Engineering function and blends security, DevOps and cloud engineering to embed security by design across modern, cloud-first environments.

You will join a high-performing Platform Engineering team, working alongside cloud specialists, DevOps professionals, and software engineers to build secure, scalable platforms. This is an opportunity to be hands-on in architecture, engineering, and compliance, while leading the charge on modern, cloud-first security strategy.

• Design, build and maintain secure CI/CD pipelines, embedding security controls and tooling throughout the software development lifecycle.
• Integrate and manage security tooling for code analysis, dependency management, container security and vulnerability scanning.
• Implement and maintain security controls across cloud infrastructure using Infrastructure as Code, with a security-first mindset.
• Automate security testing processes, including SAST, DAST and IAST, enabling early detection and remediation of vulnerabilities.
• Conduct and support regular automated security assessments, vulnerability scans and remediation planning.
• Build and maintain monitoring, alerting and threat detection capabilities using SIEM and cloud-native monitoring platforms.
• Collaborate closely with DevOps, engineering and information security teams to promote a strong DevSecOps culture and best practices.
• Provide actionable security insights to reduce risk and strengthen platform resilience.

• Proven hands-on experience in DevSecOps or security-focused engineering roles within cloud environments.
• Strong experience with CI/CD tooling such as Jenkins, GitHub Actions, GitLab CI or similar.
• Practical expertise using Infrastructure as Code tools such as Terraform or CloudFormation.
• Deep knowledge of securing AWS-based environments, container platforms (Docker, Kubernetes) and cloud-native services.
• Experience implementing and managing security tools including SAST, DAST, vulnerability scanners and container security tools.
• Strong scripting and automation skills using Bash, Python or similar languages.
• Experience with monitoring, logging and SIEM platforms such as ELK, Elastic Cloud or Datadog.
• Solid understanding of secure coding principles, application security and compliance frameworks.
• Financial services or fintech experience is beneficial but not essential.

• Comfortable taking ownership and working autonomously in a high-accountability environment.
• Eager to learn and keep up with the latest in security practices and technologies.
• A confident communicator who can bridge the gap between technical and non-technical stakeholders.
• Passionate about secure-by-design principles and building secure systems from the ground up.

• Base Salary up to £70,000 (depending on experience)
• 5% company performance bonus
• Value-based bonus of up to 10%
• Hybrid working model with 3 days per week in the Leeds office
• 37 days annual leave, inclusive of bank holidays, with flexibility to work public holidays and take alternative days off.
• Allocated company shares following successful completion of probation.
• Opportunities for professional development and technical growth.
• A collaborative, delivery-focused environment with scope to influence security strategy and mentor others.

We are an equal opportunities employer and welcome applications from all suitably qualified persons regardless of their race, sex, disability, religion/belief, sexual orientation or age.