At a Glance
- Tasks: Lead secure delivery and automation in multi-cloud environments for a major digital transformation.
- Company: Join SmartSourcing, a forward-thinking tech company working with government clients.
- Benefits: Competitive £650 per day, remote work flexibility, and opportunities for professional growth.
- Other info: Work remotely with occasional visits to Bristol and London; excellent career advancement potential.
- Why this job: Make a real impact on security practices while collaborating with top-tier engineers.
- Qualifications: Experience in DevSecOps, CI/CD, and strong collaboration skills required.
The predicted salary is between 60000 - 80000 £ per year.
SmartSourcing are looking for a SC Cleared Lead DevSecOps Engineer to work with a Government client Remote, with visits to Bristol and London as required.
Summary
A senior, client facing Lead DevSecOps Engineer role driving secure delivery, automation and DevSecOps governance across multi-cloud MOD environments (Azure ACE/i;ACE, AWS ICE, OCI OCE) within a major digital transformation programme.
Role Overview
We are seeking an experienced, client facing Lead DevSecOps Engineer to coordinate and mature DevSecOps practices across multiple digital products. You will embed security, compliance and automation throughout the software delivery life cycle, ensuring platforms and applications meet stringent MOD security and operational standards. You will also establish consistent, documented processes used by DevSecOps engineers across Azure, AWS and OCI based MODCloud environments. This role requires deep expertise in CI/CD, delivery workflows and security tooling, alongside strong collaboration with developers, DevSecOps engineers, infrastructure engineers and test teams.
Key Responsibilities
- Design, implement, document and continuously improve DevSecOps practices across delivery teams.
- Build secure, automated pipelines with integrated scanning and policy enforcement.
- Embed scanning across build, test and deployment workflows.
- Manage scanning outputs, allow lists and risk acceptance processes.
- Govern secure handling of secrets and access controls.
- Partner with developers to embed secure engineering aligned to MOD standards.
- Enable and govern IaC practices across teams and environments.
- Support patching cycles, incident response and compliance reporting.
- Produce clear processes, controls and runbooks in Confluence.
Essential Skills and Experience
- DevSecOps leadership with hands‑on capability across CI/CD and GitOps (GitHub Actions, Argo CD, Argo Rollouts).
- Security and compliance tooling (Trivy, Vault, cert;manager).
- Containers and orchestration (Docker, AWS EKS).
- Infrastructure as Code (Terraform).
- Observability (Grafana, Loki).
- Scripting and automation (Python, Bash).
- Cloud and networking fundamentals (AWS IAM, S3, network policies).
Highly Desirable
- MODCloud experience across Azure ACE/i;ACE, AWS ICE and OCI OCE.
Please apply online if you feel you are a good fit for this role.
SC Lead Devsecops Engineer - Remote - £650P/D employer: SmartSourcing Ltd
SmartSourcing is an exceptional employer, offering a dynamic work environment that prioritises innovation and collaboration. As a Lead DevSecOps Engineer, you will benefit from remote working flexibility while engaging with cutting-edge technologies in a major digital transformation programme for a Government client. The company fosters a culture of continuous learning and professional growth, ensuring that employees are equipped with the skills needed to excel in their roles and contribute meaningfully to secure delivery across multi-cloud environments.
StudySmarter Expert Advice🤫
We think this is how you could land SC Lead Devsecops Engineer - Remote - £650P/D
✨Get Active on Cybersecurity Forums
Join platforms like Stack Exchange and Reddit’s r/cybersecurity to hang out with industry pros, learn the latest, and share your insights. This will not only boost your visibility but also help you connect with potential clients who might need your freelance services.
✨Show Off Your Skills with Public Projects
Create a few open-source projects or contribute to existing ones that showcase your cybersecurity skills. Use GitHub to display your work, as this is an excellent way to attract clients looking for freelancers with a proven track record.
✨Attend Local Conferences and Meetups
Make sure to hit up cybersecurity meetups, workshops, and conferences in your area. These events are goldmines for networking, and you’ll often find people looking for freelancers after a chat over a coffee – so come prepared with your business cards and a killer elevator pitch!
✨Market Yourself Smartly
Set up a professional website that showcases your portfolio, expertise, and client testimonials. Optimise it for SEO with relevant keywords so potential clients searching for cybersecurity freelancers can easily find you. Don’t forget to link to your site on all your social media and profiles!
We think you need these skills to ace SC Lead Devsecops Engineer - Remote - £650P/D
Some tips for your application 🫡
Show Your Skills Through a Strong Portfolio:Since you're applying for a freelance role in cybersecurity, it's crucial to showcase your technical skills through a detailed portfolio. Include case studies of projects you've worked on, any security tools you've developed or assessed, and specifics on the methodologies you’ve used. This will help SmartSourcing Ltd understand what you're capable of.
Certifications Matter!:Make sure to list any relevant certifications you hold, such as CISSP, CEH, or CompTIA Security+. Freelance clients often value these credentials as they reflect your expertise and commitment to the field. If you’re actively pursuing more certifications, don’t hesitate to mention that too!
Rates, Availability, and Your Work Style:In your application, it’s essential to be clear about your freelance rates and availability. Clients appreciate transparency. Mention how many hours a week you can dedicate and your preferred working hours, as this sets expectations from the start and shows you're organised and professional.
Tailor Your CV to Highlight Cybersecurity Experience:When crafting your CV, make sure to tailor it specifically to cybersecurity. Highlight projects, tasks, and achievements related to security assessments, vulnerabilities you've mitigated, or compliance work you've undertaken. Keywords relevant to the job can grab attention and increase your chances of landing a spot at SmartSourcing Ltd.
How to prepare for a job interview at SmartSourcing Ltd
✨Showcase Your Cybersecurity Skills
As a freelancer in cybersecurity, it’s crucial we demonstrate not just our knowledge but our practical skills too. Be ready to discuss specific tools you’ve used, like Wireshark or Metasploit, and share relevant experiences where you identified vulnerabilities or mitigated risks in past projects.
✨Prepare Your Portfolio
Unlike traditional roles, freelancing relies heavily on your portfolio. Let’s curate a selection of past work that showcases our best projects. If we’ve handled penetration tests, audits, or incident responses, be sure to highlight these in your portfolio, and share any client testimonials if we have them.
✨Stay Updated on Trends and Tools
Cybersecurity is an ever-evolving field, so we should be prepared to chat about recent developments and how they impact our work. Familiarise ourselves with the latest threats, tools, and frameworks, like MITRE ATT&CK, that are pertinent to the projects we’re pitching.
✨Pitching Your Value as a Freelancer
When freelancing, we often need to negotiate our rates and value propositions. Be ready to explain how our skills can help SmartSourcing Ltd protect their assets and manage risks. It can help to outline some potential strategies or improvements we could implement for them based on their current setup.
