DevSecOps Engineer in London

DevSecOps Engineer in London

London Full-Time 60000 - 80000 £ / year (est.) No working from home possible
Law Business Research

At a Glance

  • Tasks: Secure our cloud infrastructure and applications while collaborating with diverse teams.
  • Company: Join Centellic, a forward-thinking tech company focused on innovation and security.
  • Benefits: Enjoy perks like remote work, private healthcare, and a generous wellbeing allowance.
  • Other info: Be part of a dynamic team with excellent career growth opportunities.
  • Why this job: Make a real impact by embedding security in cutting-edge technology projects.
  • Qualifications: Experience in cloud security and DevOps practices is essential.

The predicted salary is between 60000 - 80000 £ per year.

Dev Sec Ops Engineer

Department

Product & Technology

Employment Type

Full Time

Location

  • London
  • Description

As a Dev Sec Ops Engineer at Centellic, your primary responsibility is to ensure the security of our cloud‑hosted infrastructure, applications, and CI/CD pipelines.

You will embed security best practices throughout the software delivery lifecycle, enabling development and cloud engineering teams to build, deploy, and operate secure, scalable, and resilient systems.

You will work across our infrastructure landscape—Azure Kubernetes Services (AKS), Azure Virtual Machines, networking components, and application workloads—to ensure systems are protected from vulnerabilities, misconfigurations, and emerging threats.

You’ll champion secure‑by‑design principles, automate security controls, and maintain strong monitoring and incident response practices.

The role requires close collaboration with Developers, Cloud Engineers, Product Managers, and external suppliers.

You will also contribute to the continuous improvement of LBR’s cloud security posture, proactively identifying risks, recommending enhancements, and promoting a strong Dev Sec Ops culture.

Key Responsibilities

  • Team & Collaboration
  • Work closely with Development, Cloud Engineering, and Product teams to embed security into cloud and application architectures.
  • Provide guidance on secure design patterns and technical security recommendations.
  • Support colleagues in understanding secure engineering principles and emerging threats.
  • Secure Implementation & Automation
  • Enhance and maintain secure Ia C using Terraform, ensuring compliance with internal policies and standards.
  • Embed automated security checks into Azure Dev Ops CI/CD pipelines, including static analysis, dependency scanning, and Ia C scanning.
  • Ensure Kubernetes workloads follow best practices: RBAC, network policies, secrets management, image security, and ingress protections.
  • Support secure configuration of Azure VMs hosting legacy or specialised products.
  • Vulnerability Management
  • Operate and enhance container vulnerability scanning.
  • Monitor CVEs relevant to Centellic’s stack and coordinate remediation activities with engineering teams.
  • Perform regular reviews of Terraform modules, container images, Helm charts, and AKS configurations to identify misconfigurations and risks.
  • Monitoring, Detection & Incident Response
  • Work with monitoring tooling (e. g., Datadog or Azure Monitor) to detect anomalous or suspicious activity.
  • Maintain alerting rules, dashboards, and security signals supporting rapid detection and response.
  • Participate in incident response alongside the Principal Developer, Cloud Engineer and developers, including root‑cause analysis and post‑incident improvements.
  • Contribute to 24/7 support rotations where required.
  • Security Governance & Compliance
  • Ensure infrastructure and deployments adhere to LBR policies, including identity management, least privilege, encryption, and network security requirements.
  • Maintain and improve secrets management using Azure Key Vault and Kubernetes secrets best practices.
  • Support audits, documentation requirements, and risk assessments.
  • Innovation & Continuous Improvement
  • Stay current with cloud‑security trends, threats, tools, and techniques.
  • Recommend and trial new technologies to enhance security, governance, automation, and efficiency.
  • Proactively identify opportunities to strengthen security posture across AKS, VM workloads, network layers, and CI/CD processes.

Skills Knowledge and Expertise

  • Core Competencies
  • Strong ability to diagnose and resolve complex cloud and security issues across infrastructure, applications, and Dev Ops tooling.
  • Ability to translate security requirements into practical engineering tasks.
  • Clear communicator able to explain security concepts to non‑security stakeholders.
  • Works calmly under pressure with strong time‑management skills.
  • Curious, proactive, and able to independently identify improvements.
  • Technical Expertise
  • Security best practices for Azure, including networking, RBAC, managed identities, logging, and monitoring.
  • Kubernetes security: network policies, Pod Security Standards, RBAC, image security, secrets, ingress security, and high‑availability configurations.
  • Terraform and Terraform‑security concepts (policies, modules, scanning tools).
  • Azure Dev Ops CI/CD, including YAML pipelines, secure build pipelines, artifact management, and release governance.
  • Container technologies: container hardening, image optimisation, multi‑stage builds, secure base image selection.
  • Trivy (or similar), dependency scanning, and SAST/DAST tools.
  • Scripting with Python, Bash, or Power Shell for automation.
  • Git and branching strategies with a security‑focused approach.
  • Knowledge of WAF, API security, OWASP Top 10, and common cloud‑security frameworks.
  • WAF rules management, including creation, tuning, and monitoring.
  • SSL/TLS configuration best practices, certificate lifecycle management.
  • Experience with Cloudflare security features including WAF, SSL, and Zero Trust options.

Benefits

  • Start of employment
  • Eye care
  • Employee Assistance Programme
  • A day off for your birthday
  • After 3 months employment
  • Pension (4% employer contribution and 4% employee contribution)
  • After 4 months employment
  • Life assurance
  • After probation
  • Cycle to work scheme
  • Season ticket loan
  • £350 annual wellbeing allowance to contribute to gym memberships or fitness classes
  • Puregym access
  • Perks at work platform access
  • After 1 year service
  • Private healthcare
  • Additional Perks
  • Company socials
  • Access to Employee Affinity Networks
  • Mentoring scheme
  • Volunteering Day
  • Mortgage Advice
  • Work from anywhere (2 weeks)
  • Generous parental leave

We are proud to be an equal opportunities employer and are committed to ensuring that all candidates are given the same opportunity to succeed regardless of their sex, gender identity/expression or reassignment, sexual orientation, marital status, race, colour, nationality, ethnic or national origin, religion, age or disability.

#J-18808-Ljbffr

Law Business Research

Contact Details:

Law Business Research Recruitment Team

We think you need these skills to ace DevSecOps Engineer in London

Cloud Security
Azure Kubernetes Services (AKS)
Terraform
Azure DevOps CI/CD
Container Vulnerability Scanning
Incident Response
Monitoring Tools (e.g., Datadog, Azure Monitor)