Future Tech Jobs Future Tech Jobs

DevSecOps Consultant

Talent Smart
Sheffield, South Yorkshire
8 months ago
Applications closed

Related Jobs

View all jobs

DevSecOps Consultant

Talent Smart Orchard Square, South Yorkshire, United Kingdom
£650 – £675 pd

DevSecOps Security Consultant (FS Industry)

Square One Resources Sheffield, South Yorkshire, United Kingdom
£464 – £514 pd Hybrid Clearance Required

Azure Architect/Senior Cloud Engineer

CBSbutler Holdings Limited trading as CBSbutler Reading, Berkshire, United Kingdom
£600 – £750 pd

Cybersecurity Architect

SRT Marine Systems PLC Bristol, United Kingdom

DevSecOps Compliance Analyst

Darktrace Cambridge, CB2 3BJ, United Kingdom
Hybrid

DevSecOps Security Engineer - AWS, Security

Adecco Cambridge, United Kingdom
Posted
25 Sep 2025 (8 months ago)
Share
Save job
Create job alert

DevOps Security Consultant

We are looking for a DevSecOps Consultant to join a financial services client based in Sheffield. There is flexibility for this person to be based out of the Birmingham office as well. The team follow a hybrid pattern with a requirement to be in the office 3-days per week. This contract is inside IR35.

The Role

We are seeking a highly skilled and experienced Senior Cybersecurity SME / Consultant to join the Engineering Excellence and Enablement team. The successful candidate will work across global engineering platforms to benchmark, uplift, and continuously evolve cybersecurity maturity. The successful candidate will play a critical role in ensuring that build systems, runtime infrastructure, and developer tooling are secure by design, while enabling rapid and resilient software delivery across the bank.

This role offers a unique opportunity to shape the cybersecurity posture of engineering platforms at one of the world’s leading financial institutions, ensuring the bank can deliver digital services securely, reliably, and at scale.

Key Responsibilities:

Framework and Assessment

  • Develop and maintain an Engineering-Platform Cybersecurity Maturity Framework to standardise assessments across platforms.

  • Conduct comprehensive platform security reviews (build systems, CI/CD pipelines, runtime infrastructure, developer tooling) against defined framework criteria.

  • Perform threat modelling and gap analysis, identifying vulnerabilities and systemic risks impacting source code, artifacts, and workloads.

    Roadmap Development & Execution

  • Prioritise identified gaps based on business risk, regulatory impact, and operational criticality.

  • Collaborate with platform owners and engineering leads to build actionable security roadmaps, balancing quick wins with long-term strategic improvements.

  • Partner with engineering teams to design, develop, and embed security patterns and best practices into engineering platforms.

    Stakeholder Engagement & Governance

  • Serve as a trusted advisor to platform owners, senior technology stakeholders, and Cybersecurity leadership, translating technical risks into business impact.

  • Represent the function in key governance forums, providing updates on maturity progress, roadmap delivery, and risk posture.

  • Influence and align stakeholders across federated engineering teams to ensure consistent adoption of cybersecurity best practices.

    Continuous Improvement

  • Track and report maturity scores, ensuring measurable improvement across platforms.

  • Continuously evolve the maturity framework in response to emerging threats, technology evolution, and regulatory expectations.

  • Drive a culture of secure-by-design engineering through engagement, advocacy, and knowledge sharing.

    Experienced required:

  • Proven expertise in Cybersecurity within large-scale, regulated financial institutions or similarly complex environments.

  • Deep technical knowledge of engineering platforms, including CI/CD systems, build tools, artifact repositories, runtime environments, and developer tooling.

  • Strong experience with DevSecOps practices, including secure pipeline design, integration of security scanning tools, and automation of security controls.

  • Demonstrable ability to conduct threat modelling, platform security assessments, and gap analysis.

  • Experience building and implementing maturity models, frameworks, or roadmaps in complex enterprise environments.

  • Strong stakeholder management skills, with the ability to influence senior leadership and drive change across federated technology teams.

  • Excellent communication skills, with the ability to translate technical risk into business impact.

    Desirable:

  • Professional certifications such as CISSP, CISM, CCSK, CCSP, or equivalent.

  • Hands-on knowledge of cloud security (AWS, Azure, GCP) and container orchestration platforms (e.g., Kubernetes).

  • Experience in international and diverse environments, with exposure to regulatory engagement.

  • Familiarity with engineering excellence practices such as SLSA, supply chain security, SBOM, or secure developer tooling initiatives.

    More details available on successful application

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Products

Where to Advertise Cyber Security Jobs in the UK (2026 Guide)

Advertising cyber security jobs in the UK requires a different approach to most technical hiring. The candidate pool is small, heavily vetted and in high demand across government, financial services, critical national infrastructure and the private sector simultaneously. Many of the strongest candidates hold active security clearances, are not actively job-searching through general platforms, and move primarily through specialist networks and trusted referrals. General job boards reach a broad audience but lack the specificity that security professionals expect. Specialist platforms, government-affiliated channels and cleared candidate networks each serve a different part of the market. This guide, published by CybersecurityJobs.tech, covers where to advertise cyber security roles in the UK in 2026, how the main platforms compare, what employers should expect to pay, and what the data says about hiring across different role types.

Jobs

Cyber Security Jobs UK 2026: What to Expect Over the Next 3 Years

Cyber security is one of the few sectors where demand for talent has never once dipped. Every major technological shift of the past decade — cloud migration, remote working, AI adoption, the proliferation of connected devices — has expanded the attack surface that security professionals are expected to defend. And every expansion of that attack surface has generated more jobs. But the cyber security jobs market of 2026 is not simply a larger version of what it was three years ago. It is a structurally different market. The threats have evolved, the technologies used to combat them have changed, the regulatory environment has tightened considerably, and the roles being created reflect all of that. A job seeker who understands only the cyber security landscape of 2023 is already working with an outdated map. The candidates who will thrive over the next three years are those who understand where the sector is heading — which specialisms are attracting the most investment, which technologies are reshaping defensive and offensive security practice, and how the definition of a cyber security professional is broadening well beyond the traditional image of a network defender in a SOC. This article breaks down what the UK cyber security jobs market is likely to look like through to 2028 — covering the titles emerging right now, the technologies driving employer demand, the skills that will matter most, and how to position your career ahead of the curve.

Jobs

Penetration Tester Jobs in the UK: What Employers Actually Want in 2026

The demand for skilled professionals in cyber security has never been higher, and penetration testers sit at the very heart of this rapidly evolving industry. As organisations across the UK continue to digitise their operations, protect sensitive data, and defend against increasingly sophisticated threats, the need for ethical hackers has grown dramatically. If you are considering a career in this field—or looking to advance within it—it is essential to understand what employers are really looking for in 2026. This guide breaks down the current expectations, required skills, certifications, and practical experience that can help you stand out in a competitive job market.

🍪 Basic, anonymous analytics (aggregate counts only, never shared) are always on. Accept to also enable third-party tools — Google Analytics, Microsoft Clarity, Mixpanel, Leadfeeder — which help us match you with relevant Cyber Security roles. We never sell your data or use it for cross-site advertising. See our Cookie Policy.