At a Glance
- Tasks: Integrate security into CI/CD pipelines and automate security controls.
- Company: Rimes, a leader in enterprise data management for the investment community.
- Benefits: Competitive salary, diverse culture, and opportunities for professional growth.
- Other info: Embrace a culture of diversity and inclusion while advancing your career.
- Why this job: Join a dynamic team to enhance security in cutting-edge tech environments.
- Qualifications: Experience in DevOps with a strong focus on security principles.
The predicted salary is between 36000 - 60000 £ per year.
Rimes provides enterprise data management solutions to the global investment community. Driven by our passion for solving the most complex data problems, we provide our clients with investment intelligence that powers more than US$75 trillion in assets under management annually. The world’s leading institutional investors, asset managers and service providers rely on Rimes to help them make better investment decisions using accurate information and industry‑leading technology.
The DevSecOps Engineer role has been created to embed security into our engineering, DevOps and cloud delivery pipelines. Working closely with our Development, DevOps, Infrastructure and Security teams, you will engineer, automate and maintain security controls across our CI/CD pipelines, cloud workloads and application lifecycle. This position is critical in uplifting our secure by design practices, reducing vulnerabilities, and ensuring our rapidly evolving development environments adhere to best‑in‑class security standards.
Key Responsibilities
- Integrate security controls into CI/CD pipelines (Azure DevOps, GitHub Actions, Jenkins or equivalent).
- Implement automated SAST, SCA, DAST, container scanning and secrets management controls.
- Work with Development and DevOps teams to ensure secure design principles, threat modelling and secure coding practices are embedded early in the lifecycle.
- Engineer and maintain tooling for vulnerability management across code, containers, pipelines and cloud workloads.
- Automate security guardrails across Azure resources, Kubernetes clusters, API gateways, serverless workloads and service meshes.
- Support and enhance the deployment of security policies (IAM, key vaults, network controls, hardening baselines).
- Partner with engineering squads to review architecture changes and ensure security requirements are addressed.
- Contribute to incident response activities where application or pipeline security is implicated.
- Contribute to uplift of our secure engineering policies, developer training and SSDLC processes.
Requirements
- Experienced in DevOps or platform engineering with a strong security mindset.
- Hands‑on experience with at least one CI/CD platform (Azure DevOps preferred).
- Good understanding of application security principles (OWASP Top 10, SANS/CWE Top 25).
- Experience integrating or running security scanners: SAST, SCA, DAST, container scanning, IaC scanning.
- Experience with infrastructure as code (Terraform, ARM/Bicep, Helm).
- Familiar with cloud security (preferably Azure) and container security best practices.
- Capable of supporting vulnerability management processes and remediation workflows.
- Ability to collaborate with Software Engineering, DevOps, SRE, Cloud and Security teams.
- Strong communicator able to translate risk into engineering friendly language.
Nice to Have
- Experience integrating security telemetry into SIEM/SOAR pipelines.
- Exposure to Zero Trust design principles.
- Threat modelling and automated security testing frameworks.
Only selected candidates will be contacted for interviews. We appreciate your understanding. Thank you for considering a career with us. Rimes is committed to promote the values of diversity and inclusion throughout the business. Whether it’s through recruitment, retention, career progression or training and development, we are committed to improving opportunities for people regardless of their background or circumstances.
DevSecOps Engineer in London employer: Rimes
Rimes is an exceptional employer, offering a dynamic work environment where innovation meets security in the fast-paced world of enterprise data management. With a strong commitment to employee growth and development, we provide opportunities for continuous learning and collaboration across diverse teams, ensuring that our DevSecOps Engineers play a pivotal role in shaping secure engineering practices. Located in a vibrant tech hub, Rimes fosters a culture of inclusivity and diversity, making it an ideal place for professionals seeking meaningful and rewarding careers.
StudySmarter Expert Advice🤫
We think this is how you could land DevSecOps Engineer in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to DevSecOps. This gives potential employers a taste of what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on common DevSecOps questions and scenarios. Practice explaining your thought process and how you tackle security challenges in CI/CD pipelines. Confidence is key!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are genuinely interested in joining our team.
We think you need these skills to ace DevSecOps Engineer in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the DevSecOps Engineer role. Highlight your experience with CI/CD platforms, security practices, and any relevant tools you've used. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about integrating security into engineering and how your background makes you a great fit for our team. Keep it engaging and relevant to the role.
Showcase Your Projects:If you've worked on projects that involved security in DevOps or cloud environments, make sure to mention them! We love seeing real-world examples of how you've implemented security controls and automated processes.
Apply Through Our Website:We encourage you to apply through our website for the best chance of being noticed. It helps us keep track of applications and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Rimes
✨Know Your Tech Stack
Make sure you’re well-versed in the specific tools and technologies mentioned in the job description, like Azure DevOps, GitHub Actions, and Jenkins. Brush up on your knowledge of CI/CD pipelines and security controls, as this will show that you understand the core responsibilities of the role.
✨Understand Security Principles
Familiarise yourself with application security principles, especially the OWASP Top 10 and SANS/CWE Top 25. Be prepared to discuss how you’ve applied these principles in past projects, as this will demonstrate your strong security mindset and hands-on experience.
✨Prepare for Scenario Questions
Expect scenario-based questions where you might need to explain how you would integrate security into a CI/CD pipeline or handle a vulnerability management process. Practising these scenarios can help you articulate your thought process clearly during the interview.
✨Show Your Collaborative Spirit
Since the role involves working closely with various teams, be ready to share examples of how you’ve successfully collaborated with Development, DevOps, and Security teams in the past. Highlight your communication skills and ability to translate complex security risks into understandable terms for engineers.
