At a Glance
- Tasks: Engineer secure software development with automated guardrails and robust security tooling.
- Company: Join a forward-thinking tech company focused on security and innovation.
- Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
- Other info: Be part of a culture that promotes shared responsibility and continuous learning.
- Why this job: Make a real impact by embedding security into developer workflows and cloud infrastructure.
- Qualifications: 5+ years in DevSecOps, strong programming skills, and experience with CI/CD tools.
The predicted salary is between 70000 - 90000 £ per year.
As a Senior Engineer, your primary objective is to engineer the "paved road" for secure software development. You will architect and deploy automated guardrails, robust security tooling, and seamless integrations directly into developer workflows and cloud infrastructure. By treating security as an engineering discipline, you will partner with cross-functional teams (Platform, Cloud, Engineering, and Security Operations) to deliver scalable, low-friction security solutions that empower the organisation to ship code quickly and securely.
Core Responsibilities
- Embed seamless security checks (SAST, SCA, DAST, and secrets detection) directly into CI/CD workflows.
- Optimize security tooling to ensure developers receive immediate, high-fidelity, and actionable feedback.
- Automate infrastructure and application vulnerability scanning throughout the deployment lifecycle.
Security Engineering & Product Ownership
- Architect, deploy, and maintain bespoke internal security services, APIs, and automation scripts.
- Manage security tools with the rigor of a traditional software product, ensuring high availability, version control, and comprehensive documentation.
- Apply best-in-class software engineering principles to all security initiatives.
- Design and enforce policy-as-code guardrails across Infrastructure-as-Code (IaC), container orchestration (Kubernetes), and cloud identity access management (IAM).
- Collaborate alongside platform engineers to establish secure-by-default blueprints and self-service capabilities.
- Build and maintain reliable data pipelines that route structured security telemetry and alerts to our SIEM environments.
- Engineer automated remediation pathways and response playbooks for security operations.
- Oversee scanning infrastructure and vulnerability management platforms.
Culture, Advocacy & Enablement
- Act as a security evangelist, promoting a culture of shared responsibility across engineering teams.
- Lead enablement initiatives, including training sessions, comprehensive guides, and regular office hours.
- Participate actively in blameless post-mortems to drive continuous organizational learning.
Technical Expertise
- Experience: 5+ years of specialised experience in DevSecOps, Platform Security, or Security Engineering.
- Development Skills: Strong programming and automation capabilities using languages such as Python, Go, or Bash.
- CI/CD & IaC: Hands-on proficiency with modern CI/CD orchestrators (e.g., GitHub Actions, GitLab CI) and Infrastructure-as-Code tools (e.g., Terraform).
- Cloud Native: Deep understanding of major public cloud providers (AWS experience is highly advantageous), encompassing cloud networking, IAM, and telemetry.
- Security Integration: Proven track record of embedding security scanning tools (SAST, SCA, DAST, container security) into active pipelines.
Bonus Qualifications
- Previous experience operating within highly regulated industries or financial services.
- Familiarity with edge security (WAF/DDoS), Zero Trust architectures, and enterprise vulnerability management.
- Experience with Security Orchestration, Automation, and Response (SOAR) technologies.
- Relevant industry certifications (e.g., AWS Security Specialty, CKS, CISSP, GIAC).
Senior DevSecOps Engineer employer: Intaso
Join a forward-thinking organisation that prioritises security as a core engineering discipline, fostering a collaborative work culture where innovation thrives. As a Senior DevSecOps Engineer, you will benefit from extensive professional development opportunities, a commitment to continuous learning, and the chance to work with cutting-edge technologies in a dynamic environment. Located in a vibrant tech hub, our company offers a unique blend of flexibility and support, ensuring you can contribute meaningfully while advancing your career.
StudySmarter Expert Advice🤫
We think this is how you could land Senior DevSecOps Engineer
✨Tip Number 1
Network like a pro! Attend industry meetups, webinars, or conferences related to DevSecOps. It's a great way to connect with potential employers and get your name out there.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your projects, especially those involving security tooling and CI/CD workflows. This gives you a chance to demonstrate your expertise beyond just a CV.
✨Tip Number 3
Don’t be shy about reaching out! If you see a job that excites you on our website, drop a message to the hiring manager or team lead. A personal touch can make all the difference.
✨Tip Number 4
Prepare for interviews by brushing up on your technical knowledge and soft skills. Practice explaining complex concepts in simple terms, as you'll need to collaborate with cross-functional teams.
We think you need these skills to ace Senior DevSecOps Engineer
Some tips for your application 🫡
Tailor Your CV:Make sure your CV speaks directly to the job description. Highlight your experience in DevSecOps and any relevant projects that showcase your skills in security tooling and CI/CD workflows. We want to see how you can engineer that 'paved road' for secure software development!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about security engineering and how your background aligns with our mission at StudySmarter. Don’t forget to mention specific tools or methodologies you've used that relate to the role.
Showcase Your Technical Skills:We love seeing technical expertise! Make sure to list your programming skills, especially in Python, Go, or Bash, and any experience with CI/CD tools like GitHub Actions or Terraform. This will help us understand how you can contribute to our security initiatives.
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss out on any important updates. Plus, it shows you’re keen on joining the StudySmarter team!
How to prepare for a job interview at Intaso
✨Know Your Tech Inside Out
Make sure you’re well-versed in the technologies mentioned in the job description, like CI/CD tools and cloud platforms. Brush up on your programming skills in Python, Go, or Bash, as you might be asked to demonstrate your coding abilities during the interview.
✨Showcase Your Security Mindset
Prepare to discuss how you've integrated security into development workflows in your previous roles. Be ready to share specific examples of how you've implemented SAST, DAST, or other security tools in CI/CD pipelines, as this will highlight your hands-on experience.
✨Collaborate Like a Pro
Since the role involves working with cross-functional teams, think of examples where you’ve successfully collaborated with others. Highlight your experience in leading training sessions or enabling teams to adopt security practices, as this shows your ability to advocate for security culture.
✨Prepare for Scenario Questions
Expect scenario-based questions that test your problem-solving skills in real-world situations. Think about challenges you've faced in security engineering and how you overcame them, especially in regulated environments. This will demonstrate your critical thinking and adaptability.
