Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Drive secure engineering practices across cloud-based platforms and enhance security posture.
- Company: Leading financial services client with a focus on innovation and security.
- Benefits: Competitive salary, flexible working, and opportunities for professional growth.
- Why this job: Shape secure engineering practices and make a real impact in a dynamic environment.
- Qualifications: Hands-on DevSecOps experience with strong knowledge of AWS and GCP.
- Other info: Key role influencing technology and security functions in a complex enterprise.
The predicted salary is between 60000 - 80000 £ per year.
We're partnering with a leading financial services client to appoint a DevSecOps Consultant to drive secure engineering practices across large-scale, cloud-based platforms. This role is ideal for someone who has come from a hands-on DevSecOps Engineering background and has since transitioned into architecture/design and advisory, while still retaining strong technical depth.
Key Responsibilities:
- Define and implement secure architecture patterns across engineering platforms (CI/CD, build systems, runtime environments)
- Conduct security assessments, threat modelling, and gap analysis across platforms and pipelines
- Develop and embed DevSecOps best practices, including secure pipeline design and automated controls
- Establish and enforce security baselines using policy-as-code
- Build and deliver security roadmaps, prioritising risk and regulatory requirements
- Partner with engineering and platform teams to remediate vulnerabilities and improve security posture
- Act as a trusted advisor to senior stakeholders, translating technical risks into business impact
Key Requirements:
- Proven background in hands-on DevSecOps Engineering, now operating in a design/architecture-focused role
- Strong experience across both AWS and GCP (essential)
- Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms
- Expertise in secure software delivery, vulnerability management, and platform security
- Experience with threat modelling, security frameworks, and maturity assessments
- Strong knowledge of application security, network security, and cloud security principles
- Excellent stakeholder management and communication skills
Desirable:
- Experience in financial services or regulated environments
- Knowledge of Kubernetes and container security
- Familiarity with supply chain security, SBOM, and secure development practices
- Relevant certifications (eg CISSP, CISM, CCSP)
This is a key role focused on shaping and embedding secure-by-design engineering practices across a complex, enterprise environment, with strong influence across both technology and security functions. More details available on successful application.
DevSecOps Consultant employer: Talent Smart
Contact Detail:
Talent Smart Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land DevSecOps Consultant
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, especially those who work in financial services or have experience with DevSecOps. A friendly chat can lead to insider info about job openings or even referrals.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your DevSecOps projects. This gives potential employers a taste of your hands-on experience and technical depth, making you stand out from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on your communication skills. Be ready to explain complex security concepts in simple terms, as you'll need to act as a trusted advisor to senior stakeholders. Practice makes perfect!
✨Tip Number 4
Don't forget to apply through our website! We’ve got loads of opportunities that might be just what you're looking for. Plus, it’s a great way to ensure your application gets the attention it deserves.
We think you need these skills to ace DevSecOps Consultant
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the skills and experiences that match the DevSecOps Consultant role. Highlight your hands-on experience in DevSecOps, especially with AWS and GCP, and don’t forget to mention any relevant certifications!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about secure engineering practices and how your background makes you the perfect fit for this role. Keep it concise but impactful!
Showcase Your Technical Depth: In your application, be sure to demonstrate your technical expertise in CI/CD pipelines, security assessments, and vulnerability management. We want to see that you can not only design but also implement secure solutions.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands and shows us you’re serious about joining the StudySmarter team!
How to prepare for a job interview at Talent Smart
✨Know Your Tech Inside Out
Make sure you brush up on your hands-on DevSecOps skills, especially around AWS and GCP. Be ready to discuss specific tools and practices you've used in CI/CD pipelines and how they relate to secure software delivery.
✨Showcase Your Advisory Skills
Since this role involves acting as a trusted advisor, prepare examples of how you've translated technical risks into business impacts. Think about times when you've influenced senior stakeholders and how you communicated complex security concepts.
✨Prepare for Scenario Questions
Expect questions that ask you to assess security scenarios or conduct threat modelling on the spot. Practise articulating your thought process clearly and logically, demonstrating your ability to identify vulnerabilities and propose solutions.
✨Highlight Your Collaborative Spirit
This role requires partnering with engineering and platform teams, so be ready to discuss how you've worked collaboratively in the past. Share examples of how you've built relationships and enforced security best practices across teams.