At a Glance
- Tasks: Support DevSecOps practices and enhance security across digital products.
- Company: Join a leading tech firm driving digital transformation for clients.
- Benefits: Hybrid work, competitive pay, and opportunities for professional growth.
- Other info: Collaborative team culture with strong career advancement potential.
- Why this job: Make a real impact in cloud security and automation while working with cutting-edge technologies.
- Qualifications: Experience in DevSecOps, CI/CD pipelines, and cloud environments required.
The predicted salary is between 60000 - 80000 £ per year.
Duration: contract to run until 31/03/2027
Location: Hybrid. Bristol visits twice a month – predominantly remote
Clearance required: Active SC Clearance Desired. SC Eligible required
We are seeking an experienced, client-facing DevSecOps Engineer to support the implementation and operation of DevSecOps practices across multiple digital products delivered as part of a wider CLIENT business and digital transformation programme, where Capgemini is the client's prime Digital Delivery Partner. The successful candidate will work closely with development, infrastructure, testing and security teams to embed security, compliance and automation throughout the software delivery lifecycle. Products will be deployed across the CLIENT digital estate (CLIENTCloud), including Microsoft Azure (CLIENTCloud ACE / i-ACE), AWS (CLIENTCloud ICE) and Oracle Cloud Infrastructure (OCI / CLIENTCloud OCE). This role requires strong hands-on experience with CI/CD pipelines, cloud-native tooling, security controls and automation, alongside the ability to collaborate effectively within multi-disciplinary delivery teams.
Key Responsibilities
- Support the implementation and continuous improvement of DevSecOps practices across delivery teams, including:
- Secure and automated CI/CD pipelines
- Security scanning integrated into build, test and deployment workflows
- Vulnerability management and remediation activities
- Secrets management and identity/access controls
- Security policy implementation for workloads, container images and infrastructure
- Observability, monitoring, logging and audit capabilities
- Work alongside developers to promote secure-by-design engineering practices and ensure compliance with CLIENT security requirements.
- Develop and maintain Infrastructure as Code (IaC) solutions across cloud environments.
- Support incident response activities, patching cycles and compliance reporting where required.
- Create and maintain technical documentation, operational procedures and runbooks within Confluence.
- Contribute to the ongoing optimisation of DevSecOps tooling, processes and platform reliability.
Key Skills & Experience
- Proven experience as a DevSecOps Engineer within complex cloud-based delivery environments.
- Hands-on experience across:
- CI/CD and GitOps (e.g. GitHub Actions, Argo CD, Argo Rollouts)
- Security and compliance tooling (e.g. Trivy, HashiCorp Vault, cert-manager)
- Containers and orchestration (e.g. Docker, Kubernetes, AWS EKS)
- Infrastructure as Code (e.g. Terraform)
- Observability platforms (e.g. Grafana, Loki)
- Scripting and automation (e.g. Python, Bash)
- Cloud and networking fundamentals (e.g. AWS IAM, S3, network policies)
- Experience delivering within the UK Government Digital Service (GDS) lifecycle on a public sector engagement.
- Experience working within distributed and hybrid delivery teams.
- Strong collaboration skills with developers, testers, infrastructure engineers and security teams.
- Effective communication skills with the ability to work directly with technical and non-technical stakeholders.
Highly Desirable
- Experience supporting DevSecOps practices across cloud environments hosted on the CLIENT digital estate, including Microsoft Azure (CLIENTCloud ACE / i-ACE), AWS (CLIENTCloud ICE) and Oracle Cloud Infrastructure (OCI / CLIENTCloud OCE).
- Experience working within large-scale digital transformation programmes in the public sector.
All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!