At a Glance
- Tasks: Drive application security and improve CI/CD processes in a dynamic media environment.
- Company: Major media & entertainment organisation with a focus on innovation.
- Benefits: Competitive daily rate, hybrid work model, and a chance to enhance your skills.
- Other info: Fast-paced role with opportunities for growth and collaboration across teams.
- Why this job: Be at the forefront of security in tech and make a real difference.
- Qualifications: Strong background in DevSecOps and application security with GitHub expertise.
We’re supporting a major media & entertainment organisation looking for a hands-on DevSecOps Engineer to drive application security and BAM (Business Application Measures) improvements across a large enterprise environment. This is a delivery-focused role where you’ll take ownership of security remediation activities, CI/CD security integration, GitHub governance, and DevSecOps tooling improvements across multiple critical systems. They need someone technical who can actively drive security controls from “agreed” through to implementation.
Key experience required:
- Strong DevSecOps / Application Security engineering background
- GitHub administration & GitHub Advanced Security (GHAS)
- CI/CD pipeline security integration
- SAST / DAST tooling (CodeQL, Semgrep, OWASP ZAP etc.)
- Secret scanning, dependency scanning, container & IaC scanning
- OIDC / short-lived credentials
- Security remediation & vulnerability management
- JIRA / Agile delivery environments
- Strong stakeholder management & delivery ownership
Nice to have:
- BAM / governance programme experience
- Datadog / SIEM / EDR exposure
- Pen testing remediation
- OWASP / Secure SDLC knowledge
- Cloud / container security exposure
The client is looking for someone proactive, organised, and technically strong who can operate across development, infrastructure, security, and operational teams whilst keeping delivery momentum moving.
DevOps Specialist in Slough employer: Norton Blake
Join a leading media and entertainment organisation that prioritises innovation and security in a collaborative hybrid work environment. As a DevOps Specialist, you'll benefit from competitive daily rates, a focus on professional growth, and the opportunity to work with cutting-edge technologies while driving impactful security improvements across critical systems. With a culture that values proactive problem-solving and strong stakeholder engagement, this role offers a meaningful chance to contribute to a dynamic team dedicated to excellence.
StudySmarter Expert Advice🤫
We think this is how you could land DevOps Specialist in Slough
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at meetups. We all know that sometimes it’s not just what you know, but who you know that can help you land that DevSecOps role.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your DevSecOps projects, especially those involving CI/CD security integration and GitHub governance. We want to see your hands-on experience in action!
✨Tip Number 3
Prepare for interviews by brushing up on key tools like SAST/DAST and your experience with security remediation. We recommend practising common interview questions related to application security to boost your confidence.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we’re always looking for proactive and organised candidates like you!
We think you need these skills to ace DevOps Specialist in Slough
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your DevSecOps experience and aligns with the job description. We want to see how your skills in application security, CI/CD integration, and GitHub governance make you the perfect fit for this role.
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about DevSecOps and how your background in security remediation and tooling improvements can benefit us. Keep it concise but impactful!
Showcase Relevant Projects:If you've worked on projects involving SAST/DAST tooling or CI/CD pipeline security, make sure to mention them. We love seeing real-world examples of your work that demonstrate your technical prowess and delivery ownership.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates during the process. Let’s get started!
How to prepare for a job interview at Norton Blake
✨Know Your Tech Inside Out
Make sure you’re well-versed in the key technologies mentioned in the job description, like GitHub Advanced Security and CI/CD pipeline security. Brush up on your knowledge of SAST/DAST tools like CodeQL and OWASP ZAP, as these will likely come up during technical discussions.
✨Showcase Your Delivery Focus
Prepare examples that highlight your experience in driving security remediation activities and managing delivery ownership. Be ready to discuss how you've successfully integrated security into CI/CD processes in past roles, as this will demonstrate your hands-on approach.
✨Engage with Stakeholders
Since strong stakeholder management is crucial, think of instances where you’ve effectively communicated with different teams. Be prepared to explain how you’ve navigated challenges and ensured alignment across development, infrastructure, and security teams.
✨Be Proactive and Organised
The client is looking for someone who can keep delivery momentum moving. Share specific strategies you’ve used to stay organised and proactive in your previous roles, especially in fast-paced environments. This will show that you can handle the demands of the position.
