Job Description
Lead DevSecOps Engineer – Any UK Office
Here at Pinsent Masons we bring together the best people to get the job done. We’re naturally curious, constantly learning, listening, and growing. We’ll truly value your ideas. You’ll be joining an award‑winning, hardworking and commercially minded team, where you’ll have the opportunity to work with leading experts and form meaningful relationships, while making a difference. You’ll get the opportunity to be involved in varied and challenging work. Working in an open and supportive environment, to deliver outstanding results.
We are recruiting a Lead DevSecOps Engineer to shape, build and drive the firm’s DevSecOps capability across Technology Services, embedding agile, modern and secure engineering practices across Security, Operations and Solutions. Successful applicants will be given the opportunity to define how DevSecOps operates within the firm, take ownership of its delivery, and play a key role in evolving capability, tooling and maturity.
This is a hands‑on technology leadership role, initially balancing approximately 80% hands‑on delivery with 20% technology leadership, with the expectation this will evolve over time. You will work with a high degree of autonomy, driving initiatives forward, contributing to quarterly planning, and influencing stakeholders at all levels. You will also be mentoring and guiding a small existing team who are keen to learn and develop their skills further, as well as working with a delivery partner for additional capacity and capability.
This role can be based out of any of our UK offices and our standard working hours are 9.30 am‑5.30 pm, and we operate a 3‑day in‑the‑office, 2‑day from‑home working model, however as an inclusive employer, we are willing to consider any flexible working requests.
Candidate Overview
- Proven experience in DevSecOps, DevOps or security engineering, including designing and running secure delivery pipelines
- Strong hands‑on expertise with CI/CD tooling, including SAST, DAST and software composition analysis
- Experience working with cloud platforms (primarily Microsoft Azure) and Azure DevOps pipelines
- Practical knowledge of infrastructure‑as‑code, particularly Terraform, including security scanning and policy‑as‑code
- Experience securing containerised environments and Kubernetes workloads
- Broad technical understanding across development, security and operations (Dev/Sec/Ops), with the ability to operate across all three areas
