DevSecOps Engineer (Remote) in Leeds

Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. Spektrum supports apex purchasers (NATO UN EU and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services specialised aerospace and defence sales delivery and operational subject matter expertise. We are looking for personnel to join our team and support key client projects.

Who we are supporting: Allied Command Transformation (ACT) is NATO's leading agent for change, driving, facilitating and advocating the continuous improvement of Alliance capabilities to maintain and enhance the military relevance and effectiveness of the Alliance. The main objectives of ACT are: providing appropriate support to NATO missions and operations; leading NATO military transformation; and improving relationships, interaction and practical cooperation with partners, nations and international organisations.

Role Duties and Responsibilities:

• Deploy and operate containerized services using orchestration frameworks to ensure scalability and resilience.
• Automate infrastructure through Infrastructure as Code (IaC) to provide consistent and repeatable environments.
• Deploy and monitor workloads in cloud environments (AWS, Azure, Google Cloud, VMware, OpenStack).
• Implement site reliability engineering (SRE) and observability practices to ensure resilience, monitoring, logging, metrics and distributed tracing.
• Support high-throughput and service-oriented architectures ensuring resilient and scalable deployments.
• Deliver incremental capabilities in Agile and DevSecOps environments following frameworks such as Scrum, SAFe or Kanban.
• Design and manage secure networking and service meshes (TLS, Istio, Linkerd, API gateways) to ensure encrypted and reliable service-to-service communication.
• Apply zero-trust principles and compliance automation to enforce security policies and validate system compliance.
• Manage identity and access using secure methods for secrets, tokens, certificates and least-privilege access control.

Essential Skills and Experience:

• Minimum 4 years of experience with containerization and orchestration (Docker, Kubernetes, OpenShift).
• Minimum 4 years of experience in designing and maintaining CI/CD pipelines with automated testing and security validation (Jenkins, GitLab, GitHub Actions, PyTest, Selenium, SAST/DAST).
• Experience with Infrastructure as Code (Terraform, Ansible, Helm, Pulumi).
• Experience deploying and securing workloads in hybrid/public cloud environments (AWS, Azure, Google Cloud, VMware, OpenStack).
• Experience implementing site reliability engineering and observability practices (Prometheus, Grafana, ELK/Loki, OpenTelemetry).
• Experience implementing scalable, resilient, high-throughput systems and service-oriented architectures (SOA, distributed systems, performance tuning).
• Experience delivering capabilities in Agile/DevSecOps environments (Scrum, SAFe, Kanban).
• Experience designing and managing secure networking and service mesh (TLS, Istio, Linkerd, API gateways).
• Experience applying zero-trust principles and compliance automation (OPA, Kyverno, SBOM, CIS benchmarks).
• Experience managing secrets and access policies using modern IAM solutions (Vault, AWS KMS, Azure Key Vault, RBAC/ABAC).

Desirable Skills and Experience:

• Experience in developing and adapting a DevSecOps platform to allow Agile and Innovative development in a NATO or National defence institution.
• Relevant Degree in Computer Science.
• Advanced Proficiency in English.

Working Location: Remote

Contract Duration: January 2026 – December 2030.

We never know what new opportunities might be just over the horizon. If this opportunity isn't for you, please feel free to send us your resume anyway and be the first to know if something suitable for your skills and experience comes up.