Location: Sheffield,UK (3 days onsite weekly)
We are seeking an experienced DevSecOps Security Consultant with strong expertise in Application Security, DevSecOps, CI/CD Security, and Enterprise Risk Management.
Key Skills
- DevSecOps & Secure SDLC
- Application Security & Threat Modelling
- Network Security Architecture
- Vulnerability & Risk Management
- Security Assessments & Gap Analysis
- Stakeholder Management
Responsibilities
- Design and implement secure DevSecOps practices and pipelines
- Conduct threat modelling and security architecture reviews
- Integrate security controls and scanning tools into CI/CD workflows
- Assess platform security risks and recommend remediation strategies
- Drive security maturity initiatives across engineering teams
- Collaborate with stakeholders to align security with business objectives
Good to Have
- CISSP, CISM, CCSP, CCSK or similar certifications
- Cloud Security (AWS, Azure, GCP)
- SLSA, SBOM & Software Supply Chain Security
