At a Glance
- Tasks: Drive application security and improve CI/CD processes in a dynamic media environment.
- Company: Major media & entertainment organisation with a focus on innovation.
- Benefits: Competitive daily rate, hybrid work model, and contract flexibility.
- Other info: Proactive role with opportunities to collaborate across various teams.
- Why this job: Make a real impact on security measures in a large enterprise setting.
- Qualifications: Strong DevSecOps background and experience with GitHub and CI/CD security.
We're supporting a major media & entertainment organisation looking for a hands-on DevSecOps Engineer to drive application security and BAM (Business Application Measures) improvements across a large enterprise environment. This is a delivery-focused role where you'll take ownership of security remediation activities, CI/CD security integration, GitHub governance, and DevSecOps tooling improvements across multiple critical systems. They need someone technical who can actively drive security controls from "agreed" through to implementation.
Key experience required:
- Strong DevSecOps / Application Security engineering background
- GitHub administration & GitHub Advanced Security (GHAS)
- CI/CD pipeline security integration
- SAST / DAST tooling (CodeQL, Semgrep, OWASP ZAP etc.)
- Secret scanning, dependency scanning, container & IaC scanning
- OIDC / short-lived credentials
- Security remediation & vulnerability management
- JIRA / Agile delivery environments
- Strong stakeholder management & delivery ownership
Nice to have:
- BAM / governance programme experience
- Datadog / SIEM / EDR exposure
- Pen testing remediation
- OWASP / Secure SDLC knowledge
- Cloud / container security exposure
The client is looking for someone proactive, organised, and technically strong who can operate across development, infrastructure, security, and operational teams whilst keeping delivery momentum moving.
DevOps Specialist in London employer: Norton Blake
Join a leading media and entertainment organisation that prioritises innovation and security in a dynamic hybrid work environment. As a DevSecOps Specialist, you'll benefit from a collaborative culture that fosters professional growth and offers competitive daily rates, while playing a crucial role in enhancing application security across critical systems. With opportunities to engage with cutting-edge technologies and a focus on continuous improvement, this role is perfect for those looking to make a meaningful impact in a fast-paced industry.
StudySmarter Expert Advice🤫
We think this is how you could land DevOps Specialist in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at meetups. We all know that sometimes it’s not just what you know, but who you know that can help you land that DevSecOps role.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your DevSecOps projects. We want to see your hands-on experience with CI/CD security integration and tooling improvements – it’ll make you stand out!
✨Tip Number 3
Prepare for those interviews! Brush up on your knowledge of SAST/DAST tools and security remediation strategies. We recommend practising common interview questions related to application security to boost your confidence.
✨Tip Number 4
Apply through our website! We’ve got loads of opportunities waiting for you. By applying directly, you’ll have a better chance of getting noticed by hiring managers looking for that perfect DevSecOps Engineer.
We think you need these skills to ace DevOps Specialist in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the DevSecOps role. Highlight your experience with GitHub, CI/CD security integration, and any relevant tools like SAST/DAST. We want to see how your skills match what we're looking for!
Showcase Your Projects:Include specific projects where you've driven security improvements or implemented DevSecOps practices. This gives us a clear picture of your hands-on experience and how you can contribute to our team.
Be Clear and Concise:When writing your application, keep it clear and to the point. Use bullet points for key achievements and avoid jargon unless it's relevant. We appreciate straightforward communication!
Apply Through Our Website:Don't forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. We can't wait to hear from you!
How to prepare for a job interview at Norton Blake
✨Know Your Tech Inside Out
Make sure you brush up on your DevSecOps knowledge, especially around application security and CI/CD pipeline integration. Be ready to discuss specific tools like GitHub Advanced Security and SAST/DAST tooling, as they’ll likely want to hear about your hands-on experience with these.
✨Showcase Your Problem-Solving Skills
Prepare to share examples of how you've tackled security challenges in the past. Think about times when you drove security remediation activities or improved governance processes. This will demonstrate your proactive approach and ability to take ownership.
✨Familiarise Yourself with Their Environment
Research the company’s media and entertainment sector to understand their unique challenges. Knowing about their specific security needs and how your skills can address them will show that you're genuinely interested and well-prepared.
✨Engage with Stakeholders
Since strong stakeholder management is key for this role, be prepared to discuss how you've successfully collaborated with different teams in the past. Highlight your communication skills and how you keep everyone aligned during delivery processes.
