At a Glance
- Tasks: Engineer secure software development with automated guardrails and robust security tooling.
- Company: Join a forward-thinking tech company focused on security and innovation.
- Benefits: Enjoy competitive salary, health perks, hybrid work, and growth opportunities.
- Other info: Be part of a culture that promotes shared responsibility and continuous learning.
- Why this job: Make a real impact by embedding security into developer workflows and cloud infrastructure.
- Qualifications: 5+ years in DevSecOps, strong programming skills, and CI/CD experience.
The predicted salary is between 70000 - 90000 £ per year.
As a Senior Engineer, your primary objective is to engineer the "paved road" for secure software development. You will architect and deploy automated guardrails, robust security tooling, and seamless integrations directly into developer workflows and cloud infrastructure. By treating security as an engineering discipline, you will partner with cross-functional teams (Platform, Cloud, Engineering, and Security Operations) to deliver scalable, low-friction security solutions that empower the organisation to ship code quickly and securely.
Core Responsibilities
- Pipeline Integration & Secure Delivery: Embed seamless security checks (SAST, SCA, DAST, and secrets detection) directly into CI/CD workflows. Optimise security tooling to ensure developers receive immediate, high-fidelity, and actionable feedback. Automate infrastructure and application vulnerability scanning throughout the deployment lifecycle.
- Security Engineering & Product Ownership: Architect, deploy, and maintain bespoke internal security services, APIs, and automation scripts. Manage security tools with the rigor of a traditional software product, ensuring high availability, version control, and comprehensive documentation. Apply best-in-class software engineering principles to all security initiatives.
- Cloud Posture & Policy-as-Code: Design and enforce policy-as-code guardrails across Infrastructure-as-Code (IaC), container orchestration (Kubernetes), and cloud identity access management (IAM). Collaborate alongside platform engineers to establish secure-by-default blueprints and self-service capabilities.
- Threat Detection & Telemetry: Build and maintain reliable data pipelines that route structured security telemetry and alerts to our SIEM environments. Engineer automated remediation pathways and response playbooks for security operations. Oversee scanning infrastructure and vulnerability management platforms.
- Culture, Advocacy & Enablement: Act as a security evangelist, promoting a culture of shared responsibility across engineering teams. Lead enablement initiatives, including training sessions, comprehensive guides, and regular office hours. Participate actively in blameless post-mortems to drive continuous organizational learning.
Technical Expertise
- Experience: 5+ years of specialised experience in DevSecOps, Platform Security, or Security Engineering.
- Development Skills: Strong programming and automation capabilities using languages such as Python, Go, or Bash.
- CI/CD & IaC: Hands-on proficiency with modern CI/CD orchestrators (e.g., GitHub Actions, GitLab CI) and Infrastructure-as-Code tools (e.g., Terraform).
- Cloud Native: Deep understanding of major public cloud providers (AWS experience is highly advantageous), encompassing cloud networking, IAM, and telemetry.
- Security Integration: Proven track record of embedding security scanning tools (SAST, SCA, DAST, container security) into active pipelines.
Bonus Qualifications
- Previous experience operating within highly regulated industries or financial services.
- Familiarity with edge security (WAF/DDoS), Zero Trust architectures, and enterprise vulnerability management.
- Experience with Security Orchestration, Automation, and Response (SOAR) technologies.
- Relevant industry certifications (e.g., AWS Security Specialty, CKS, CISSP, GIAC).
Senior DevSecOps Engineer in London employer: Intaso
Join a forward-thinking organisation that prioritises innovation and security in software development. With a hybrid work model based in London, we foster a collaborative culture where your expertise as a Senior DevSecOps Engineer will be valued and nurtured. Enjoy opportunities for professional growth, access to cutting-edge technology, and the chance to make a meaningful impact by embedding security into the heart of our development processes.
StudySmarter Expert Advice🤫
We think this is how you could land Senior DevSecOps Engineer in London
✨Tip Number 1
Network like a pro! Attend industry meetups, conferences, or even local tech events. Chatting with folks in the field can lead to opportunities that aren’t even advertised yet.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects and contributions. This gives potential employers a taste of what you can do and how you approach security challenges.
✨Tip Number 3
Prepare for interviews by practising common DevSecOps scenarios. Think about how you’d integrate security into CI/CD workflows or handle vulnerability management. We want you to shine when it’s time to chat!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Senior DevSecOps Engineer in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the skills and experiences that align with the Senior DevSecOps Engineer role. Highlight your experience with CI/CD, security tooling, and cloud infrastructure to show us you’re the perfect fit!
Craft a Compelling Cover Letter:Use your cover letter to tell us why you’re passionate about security engineering. Share specific examples of how you've implemented security solutions in past roles, and don’t forget to mention your collaborative spirit!
Showcase Your Technical Skills:We want to see your technical prowess! Include relevant programming languages, tools, and frameworks you’ve worked with, especially those mentioned in the job description like Python, Terraform, and AWS.
Apply Through Our Website:For the best chance of getting noticed, apply directly through our website. It’s the easiest way for us to keep track of your application and ensure it reaches the right team!
How to prepare for a job interview at Intaso
✨Know Your Tech Inside Out
Make sure you’re well-versed in the technologies mentioned in the job description, like CI/CD tools and cloud platforms. Brush up on your programming skills in Python, Go, or Bash, and be ready to discuss how you've integrated security into development workflows.
✨Showcase Your Problem-Solving Skills
Prepare to share specific examples of how you've tackled security challenges in past roles. Think about times when you automated security processes or improved existing systems, and be ready to explain your thought process and the impact of your solutions.
✨Understand the Company’s Security Culture
Research the company’s approach to security and their current practices. Be prepared to discuss how you can contribute to fostering a culture of shared responsibility and continuous learning within their engineering teams.
✨Ask Insightful Questions
Prepare thoughtful questions that show your interest in the role and the company. Inquire about their current security challenges, the tools they use, or how they envision the future of their DevSecOps practices. This not only demonstrates your enthusiasm but also helps you gauge if the company is the right fit for you.
