Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Architect and implement secure CI/CD pipelines and cloud infrastructure.
- Company: Join Grant Thornton, a forward-thinking firm with a vibrant culture.
- Benefits: Flexible working options, competitive salary, and opportunities for personal growth.
- Why this job: Be part of a transformative digital team shaping the future of our industry.
- Qualifications: Experience in CI/CD pipelines, Azure cloud, and infrastructure-as-code.
- Other info: Inclusive culture that values your unique contributions and supports work-life balance.
The predicted salary is between 36000 - 60000 £ per year.
At Grant Thornton we do things differently - looking to the future, driving ambitious growth and pioneering positive change in our industry. Providing audit, tax and advisory services, we empower clients through strategic insight, curiosity, and genuine partnership. And we empower our people with real opportunity, an inclusive culture and work life balance.
Grant Thornton is building a new digital team as part of the firm’s £500m multi-year investment to transform how we work and deliver for clients. This investment is focused on redesigning our operating model around the way clients make decisions, using data, digital tools, and streamlined processes to remove friction, reduce duplication and provide faster, clearer insights. The new digital team will play a critical role in shaping and embedding these changes across the firm, developing tools, platforms, and digital capabilities that accelerate decision-making, improve the client experience, and empower our people to work smarter.
As a DevSecOps Engineer within our practice, you will:
- Architect, implement, and operate CI/CD pipelines across all environments.
- Develop infrastructure-as-code (eg Bicep/Terraform) for consistent, repeatable, secure cloud provisioning.
- Introduce and manage security tooling including vulnerability scanning, dependency scanning, and SIEM integrations.
- Ensure strong identity, access, and secrets management aligned with zero-trust principles.
- Implement observability tooling and dashboards (logs, metrics, alerts) for proactive issue detection.
- Conduct disaster recovery and business continuity planning and exercises.
- Collaborate with infrastructure, security, product, software engineering, and architecture teams to guide secure design and delivery.
- Act as subject matter expert for DevSecOps practices, tooling, and governance.
Joining us as a DevSecOps Engineer, the minimum criteria you’ll need is proven experience designing and managing secure CI/CD pipeline and cloud-native infrastructure. A strong understanding of Azure cloud, including networking, identity, compute, and security controls and hands-on experience with infrastructure-as-code (eg Bicep/Terraform) and automation tooling.
It would be great if you had some of the following skills, but don’t worry if you don’t tick every box, we’ll help you develop along the way:
- Ability to embed security practices such as threat modelling, SAST, DAST, and policy-as-code.
- Strong communication and collaboration skills, able to influence engineers and stakeholders.
- Experience delivering in complex or multi-stakeholder environments.
- Certifications in cloud (Azure), security (e.g., Security+, CISSP), or DevOps.
- Experience leading or establishing DevSecOps or platform engineering capabilities.
- Experience introducing testing and security automation into existing pipelines.
- Experience with Crowdstrike or similar.
Embracing uniqueness, the culture at Grant Thornton thrives on the contributions of all our people. Building an inclusive culture, where we value difference and respect our colleagues helps our people to perform at the best of their ability and realise their potential.
Life is more than work. The things you do, and the people you’re with outside of work matter, that’s why we’re happy to look at flexible working options for all our roles, and we’ll always do our best to keep your work and life in balance.
The impact you can make here will go far beyond your day job. From secondments, to fundraising for local charities, or investing in entrepreneurs in the developing world, you’ll be giving back to society.
We’re looking for people who want to contribute, spark fresh ideas and go beyond expectations. People who want to be able to proudly do what’s right, for the firm, our clients, our people and themselves.
DevSecOps Engineer employer: Grant Thornton LLP
Contact Detail:
Grant Thornton LLP Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land DevSecOps Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects and contributions. This is a great way to demonstrate your expertise in DevSecOps and make a lasting impression on potential employers.
✨Tip Number 3
Prepare for interviews by practising common questions and scenarios related to DevSecOps. Think about how you can highlight your experience with CI/CD pipelines and cloud security during the conversation.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team at Grant Thornton.
We think you need these skills to ace DevSecOps Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the DevSecOps Engineer role. Highlight your experience with CI/CD pipelines, cloud infrastructure, and security practices. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Share your passion for digital transformation and how you can contribute to our ambitious journey. Be genuine and let us know why you want to join Grant Thornton.
Showcase Your Projects: If you've worked on relevant projects, don't hold back! Include links or descriptions of your work with infrastructure-as-code or security tooling. We love seeing real examples of your expertise in action.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Grant Thornton LLP
✨Know Your Tech Inside Out
Make sure you’re well-versed in the technologies mentioned in the job description, especially Azure, CI/CD pipelines, and infrastructure-as-code tools like Bicep or Terraform. Brush up on your knowledge of security practices such as threat modelling and SAST/DAST, as these will likely come up during technical discussions.
✨Showcase Your Collaboration Skills
Since the role involves working with various teams, be prepared to discuss examples of how you've successfully collaborated with engineers and stakeholders in the past. Highlight any experiences where you influenced decisions or improved processes through teamwork.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in a DevSecOps context. Think about challenges you've faced in previous roles and how you approached them, particularly around security tooling and disaster recovery planning.
✨Emphasise Your Growth Mindset
Grant Thornton values personal development, so express your eagerness to learn and grow within the role. Share any relevant certifications you have or are pursuing, and discuss how you plan to stay updated with industry trends and best practices.