DevSecOps Engineer – Terraform Sentinel Policy Developer

Remote (Occasional travel to London or Edinburgh)

Contract | 6 Months

Rate: £550 / £575 per day | Immediate Start – Outside IR35

Secure the Future of Cloud Development — One Policy at a Time

Are you a hands-on DevSecOps engineer with a passion for embedding security into the development lifecycle? Do you thrive in high-impact environments where your code shapes how cloud platforms are governed?

Join one of Europe’s top DevOps consultancies — a digital transformation leader trusted by major enterprises across the public and private sector. We’re looking for a Terraform Policy Developer with Sentinel experience to help design and implement the next generation of cloud controls for a flagship client.

The Mission

You’ll play a critical role in developing security policies as code, enabling safe, scalable, and developer-friendly adoption of public cloud infrastructure. This is your chance to help a major organisation “shift security left” — catching misconfigurations and vulnerabilities before they go live.

What You’ll Do

• Develop 20 new Sentinel policies aligned with AWS best practices and existing Terraform control rules
• Use an existing automated testing framework to validate policy behaviour and fail scenarios
• Demo and hand over policies to internal platform teams and customers
• Write clear and practical developer and customer documentation
• Showcase policy capabilities across public cloud teams
• Lead hands-on sessions with users to drive adoption and gather feedback
• Contribute to broader cloud control strategy and parity between Terraform and Sentinel frameworks

Tech Stack & Environment

• Terraform (HCL) – infrastructure as code
• Sentinel – policy as code (Terraform Cloud/Enterprise)
• Python – scripting and automation
• GitLab – CI/CD pipelines and source control
• AWS – primary cloud provider (Azure coming soon)
• Security Frameworks – AWS Foundational Best Practices

Who You Are

• An experienced DevSecOps or Platform Engineer with a strong grasp of cloud security automation
• You’ve written and deployed Sentinel policies and understand how to enforce security guardrails at scale
• Strong working knowledge of Terraform, GitLab, and cloud-native architecture (AWS preferred)
• Able to demo, document, and explain your work to engineers, security teams, and stakeholders
• Autonomous, collaborative, and comfortable with fast-moving environments

Bonus Points For

• Experience with AWS Security Lake
• Familiarity with multi-cloud environments
• Understanding of Cactus (internal Terraform module library)
• Previous experience in public sector or regulated industries

Why Join Us?

• Work with a visionary public cloud platform team on a mission to automate and scale security
• Collaborate with a tight-knit group of high-calibre engineers solving real-world challenges
• Own policy development from discovery to release
• Be part of building a developer-friendly security framework
• Long-term potential and pipeline of exciting cloud transformation projects

Ready to apply your DevSecOps expertise where it really matters? Send us your CV today and help reshape cloud security — one line of policy code at a time.