At a Glance
- Tasks: Secure and optimize cloud infrastructure while collaborating with development, security, and operations teams.
- Company: Join Virgin Media O2, the UK's fastest broadband network and a top mobile brand.
- Benefits: Enjoy a comprehensive reward package with benefits designed for you and your loved ones.
- Why this job: Be part of a diverse team that values inclusion and empowers you to be your authentic self.
- Qualifications: Strong experience with GCP, AWS, or Azure; knowledge of DevSecOps principles and CI/CD pipeline security required.
- Other info: Flexible location options and a commitment to equity and inclusion throughout the application process.
The predicted salary is between 43200 - 72000 £ per year.
Summary
Press space or enter keys to toggle section visibility
Location
London
Job Type
Full Time
Posted Date
21-Oct-2024
Ref #
62657
As a DevSecOps Engineer, you will play a meaningful role in securing and optimising our cloud infrastructure. You’ll work closely with development, security, and operations teams to ensure that platforms are secure, resilient, and aligned with industry standards, all while supporting continuous improvement.
We are looking for a candidate who can combine their technical expertise with strong communication and problem-solving skills. You’ll balance the agility of DevOps practices with a deep understanding of security principles, ensuring that our systems not only perform well but are also secure by design.
Location Options: Reading, Hammersmith (soon to be Paddington from December 9th 2024), Birmingham, Manchester (1 day per week in office)
Who we are
The UK’s fastest broadband network. The nation’s best-loved mobile brand. And, one of the UK’s biggest companies too.
Diverse, high performing teams – jam packed with serious talent. Together, we offer the UK more choice and better value, through our boundary-pushing, customer-championing values and ambitions.
Together, we are Virgin Media O2, and we can’t wait to see what you can do.
Accessible, inclusive and equitable for all
Virgin Media O2 is an equal opportunities employer and we’re working hard to remove bias and barriers for our people and candidates. So, we build equity and inclusion into everything we do, from the policies we craft to the relationships we shape. We support and encourage you to be your authentic self throughout your application journey with us.
The must haves
In order to be considered, you must have the following experience;
- Strong experience with Google Cloud Platform (GCP), AWS, or Azure with a knowledge of DevSecOps principles, IAM, Cloud Security, and regulatory compliance frameworks.
- Experience with Infrastructure-as-Code (IaC) tools like Terraform and CloudFormation.
- Experience in CI/CD pipeline security, container security, and API security (RESTful and GraphQL APIs).
- Hands-on experience with Kubernetes, Docker, and scripting languages such as Python, Golang, TypeScript, Java.
- Familiarity with security testing tools (SAST/DAST) and vulnerability management tools like NIST and MITRE ATT&CK.
- Proficiency in cloud architecture, automation, and platform engineering.
The other stuff we are looking for
We’d also love you to bring;
- Knowledge of security certifications and frameworks such as ISO27001, SOC2, GDPR, PCIDSS, OWASP Top 10.
- Experience with databases such as MongoDB, MySQL, PostgresDB, and SQLDB.
- Familiarity with observability tools like Prometheus, Grafana, ElasticSearch, Logstash, Fluentd, and incident response playbooks.
- Strong understanding of process automation, platform monitoring, and disaster recovery planning.
What’s in it for you
Our goal is to celebrate our people, their lives and everything in-between. We aim to create a culture that empowers everyone to bring the best versions of themselves to work each and every day. We believe the most inclusive and diverse culture makes for a better business and a brighter world.
Working at Virgin Media O2, you get a bumper reward package bursting with benefits, and loads of extras you can add if you’d like to. These are designed to support both you and your loved ones, making sure that you’re covered no matter what life throws your way.
Next steps
If we feel like a place where you can belong, we’d love to learn more about you as a person and your experience to date. Once you’ve submitted an application the next steps of the process, if successful, are likely to include an initial screening call followed by a technical interview
When you apply, you’ll be asked about any adjustments you might need to support the recruitment process. Let us know, and we’ll be sure to discuss it with you.
Please note: Applications will be reviewed, and interviews conducted throughout the duration of this advert, therefore we may bring the closing date forward. We encourage all interested applicants to apply as soon as possible. If you’re offered a job with us, it will be conditional, based on the passing of background checks. All roles require a criminal record check and some roles need a financial probity check. Your recruiter can provide you with more information if needed.
Thanks for your patience and for showing an interest in joining the Virgin Media O2 family.
#LI-NC1#J-18808-Ljbffr
DevSecOps Engineer employer: Virgin Media
Contact Detail:
Virgin Media Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land DevSecOps Engineer
✨Tip Number 1
Familiarize yourself with the specific cloud platforms mentioned in the job description, such as Google Cloud Platform (GCP), AWS, or Azure. Having hands-on experience and being able to discuss your projects or challenges faced on these platforms will set you apart during interviews.
✨Tip Number 2
Brush up on your knowledge of Infrastructure-as-Code (IaC) tools like Terraform and CloudFormation. Be prepared to share examples of how you've implemented these tools in past projects, as this is a key requirement for the role.
✨Tip Number 3
Understand the principles of CI/CD pipeline security and be ready to discuss your experience with container security and API security. Highlight any specific tools or frameworks you've used to secure these environments.
✨Tip Number 4
Showcase your problem-solving skills by preparing for scenario-based questions that may arise during the technical interview. Think about past experiences where you had to troubleshoot security issues or optimize cloud infrastructure.
We think you need these skills to ace DevSecOps Engineer
Some tips for your application 🫡
Understand the Role: Make sure you fully understand the responsibilities and requirements of a DevSecOps Engineer. Highlight your experience with cloud platforms like GCP, AWS, or Azure, and your knowledge of DevSecOps principles in your application.
Tailor Your CV: Customize your CV to reflect the skills and experiences that align with the job description. Emphasize your hands-on experience with tools like Terraform, Kubernetes, and your proficiency in scripting languages such as Python or Golang.
Craft a Strong Cover Letter: Write a compelling cover letter that showcases your technical expertise and problem-solving skills. Mention specific projects where you implemented security measures or improved cloud infrastructure.
Showcase Communication Skills: Since strong communication is key for this role, provide examples in your application of how you've effectively collaborated with development, security, and operations teams in the past.
How to prepare for a job interview at Virgin Media
✨Showcase Your Technical Skills
Be prepared to discuss your experience with cloud platforms like GCP, AWS, or Azure. Highlight specific projects where you implemented DevSecOps principles and how you ensured security compliance.
✨Demonstrate Problem-Solving Abilities
Prepare examples of challenges you've faced in previous roles, particularly related to CI/CD pipeline security or container security. Explain your thought process and the solutions you implemented.
✨Communicate Effectively
Since strong communication skills are essential, practice explaining complex technical concepts in simple terms. This will show that you can collaborate effectively with development, security, and operations teams.
✨Familiarize Yourself with Security Frameworks
Brush up on security certifications and frameworks such as ISO27001, SOC2, and GDPR. Be ready to discuss how these frameworks influence your approach to cloud security and compliance.