DevSecOps Engineer

INSTANDA
London
1 month ago
Applications closed

Related Jobs

View all jobs

Principal Security Engineer

Cybersecurity Architect (SC cleared)

Security Engineer

Security Engineer

Cloud Security Engineer / Information Security Engineer

Cloud Security Engineer

We are looking for a DevSecOps Engineer to join our growing DevOps Engineering team.

This role is UK based, primarily remote working with some travel required to our London Office. Sponsorship is not available for this role.

What you will do:

  1. Security Integration in CI/CD Pipelines:Implement security controls within CI/CD pipelines using automation and best practices, ensuring vulnerabilities are caught early in the development cycle.
  2. Infrastructure as Code (IaC) Security:Secure the infrastructure by applying security measures to IaC tools such as Terraform and Ansible.
  3. Container Security:Ensure that containers (Docker, Kubernetes) are secured by configuring appropriate policies, scanning for vulnerabilities, and managing runtime security.
  4. Cloud Security:Design, implement, and manage security across Azure, focusing on identity management, data protection, and network security.
  5. Vulnerability Management:Identify and prioritize vulnerabilities across infrastructure and applications, and collaborate with teams to remediate them in a timely manner.
  6. Threat Modelling and Risk Assessment:Perform threat modelling to identify security risks and provide recommendations for mitigation.
  7. Monitoring and Incident Response:Develop and maintain monitoring systems and respond to security incidents quickly and effectively.
  8. Automated Security Testing:Integrate and manage SAST, DAST, and other security testing tools to identify security issues in code and applications.
  9. Compliance and Governance:Develop and manage Azure policies to ensure compliance with security standards and regulations (ISO 27001, SOC 2, GDPR) across our infrastructure.
  10. Collaboration:Work closely with development, operations, and security teams to build a culture of security and ensure it is embedded in all phases of the development process.
  11. Security Awareness:Provide mentorship and training to teams on secure coding practices, best security practices, and emerging security threats.
  12. Security Integration:Integrate Azure Defender and other security tools to enhance our cloud security posture.


Requirements

Essential:

  1. Passion for Security
  2. Proven experience in a DevSecOps role or similar.
  3. Strong understanding of Azure DevOps, CI/CD practices
  4. Familiarity with Azure services, including Azure Defender, Azure Monitor, and Azure Policy.
  5. Experience with security and compliance scanning tools such as vulnerability scanners, intrusion detection systems, & security information & event management (SIEM) solutions.
  6. Knowledge of container management with Azure Container Registry.
  7. Experience in SAST, DAST & other techniques to improve code security


Desirable:

  1. Proficiency in scripting, preferably with PowerShell.
  2. Understanding of DotNet development and deployment pipelines.
  3. Experience working with PCI DSS standards (good to have).


Benefits

  1. Competitive salary
  2. Generous28 daysholidayallowance, in addition to public holidays.
  3. For every year of service you complete, we'll give you anadditional days holiday(max. 5 days)
  4. One Dynamic Day per monthon top of your holiday allowance to spend time doing the things you want to do or simply catching up with life admin.
  5. Remote & Hybrid approachvarying with the nature of your role.
  6. Life cover; income protectionand participation in the companypension scheme
  7. All employees are included in the companydiscretionary bonus scheme.
  8. £100 per monthto put towards wellness activities.
  9. Annuallearning & development allowance of£1,250and free access to LinkedIn learning and Microsoft ESI learning platforms


Additional Information:

Our company was built by looking at the world through a different lens and our culture today reflects that by encouraging you to be yourself, speak your mind, and share your opinions. We want people who want to push themselves, be part of something great, and be prepared to challenge if they think there is a better way. Collaboration sits at the heart of how we operate, it has fueled our growth enormously and our aim to be 'world class'.

We want everyone to be the best they can be throughout our recruitment process; if you require any additional adjustments please let us know.Visitinstanda.com/careersfor more information

INSTANDA has an in-house recruitment team, which focuses on sourcing great candidates directly. INSTANDA does not accept unsolicited resumes from agency or search firm recruiters. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired. When we do use agencies, we have a PSL in place, so please do not contact managers directly.#J-18808-Ljbffr

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Job-Hunting During Economic Uncertainty: Cyber Security Edition

The cybe rsecurity sector sits at the forefront of today’s digital landscape, defending businesses and governments alike from increasingly sophisticated threats. From incident response and network security to cloud protections and zero-trust architectures, cyber security professionals tackle an ever-evolving array of challenges. Yet, even this mission-critical field is not immune to economic turbulence. When broader financial markets experience uncertainty—whether through global recessions, regional downturns, or unexpected macro events—the hiring climate can shift, making roles more selective and budgets tighter. For job seekers in cyber security, this can be disconcerting. You might discover that once-abundant vacancies have become scarce, competition for the remaining positions is fiercer, or company priorities pivot away from large-scale expansions toward essential, cost-justified security projects. At the same time, data breaches and cyberattacks don’t pause during economic slowdowns—if anything, they may escalate as bad actors exploit organizational vulnerabilities. This paradox means that while the market feels tough, demand for cyber security expertise remains robust. In this article, we’ll look at: Why economic uncertainty affects cyber security hiring trends. Strategies for staying competitive, even if the number of open roles shrinks. Methods to highlight your skills, adapt to shifting priorities, and network effectively. Approaches for preserving mental well-being during prolonged searches or uncertain feedback loops. How www.cybersecurityjobs.tech can help you find the ideal security-focused role. By proactively sharpening your skill set, tailoring your professional profile, and engaging with a focused community, you can secure a rewarding cyber security job—even when the broader market feels volatile.

Careers

How to Achieve Work-Life Balance in Cyber Security Jobs: Realistic Strategies and Mental Health Tips

Cyber security is one of today’s most vital and rapidly expanding sectors. As data breaches, ransomware, and other cyber threats continue to evolve, the demand for skilled professionals is surging across industries—from finance and healthcare to government and e-commerce. Whether you’re a penetration tester, security analyst, or threat intelligence expert, you play a key role in safeguarding digital infrastructure and sensitive information. This high-stakes environment, however, often comes with intense pressure. Long hours, constant vigilance, and an ever-changing threat landscape can make it challenging to find time for personal well-being. Many cyber security specialists report difficulty striking a sustainable work-life balance, unsure if it’s even possible in a field that never truly sleeps. Yet, as concerns about mental health and burnout become more pressing, professionals and employers alike are seeking better ways to combine career advancement with a fulfilling personal life. In this comprehensive article, we’ll explore how to achieve a work-life balance in cyber security. You’ll discover strategies for managing 24/7 threat alerts, the importance of realistic expectations, ways to maintain mental health in high-intensity roles, and tips for setting boundaries without compromising your professional growth. Whether you’re new to this dynamic arena or already an established specialist, these insights can help you thrive personally and professionally in the fast-paced world of cyber security.

Careers

Transitioning from Academia to the Cyber Security Industry: How Researchers Can Harness Their Skills to Protect Commercial Environments

Cyber security has become a mission-critical field in an era where data breaches, ransomware attacks, and sophisticated hacking techniques threaten businesses and public institutions alike. As digital transformation touches nearly every facet of modern life, the need for highly skilled individuals capable of defending systems and networks continues to grow. For PhDs and academic researchers with expertise in areas like cryptography, network security, or threat intelligence, this presents an exciting opportunity to deploy your analytical prowess in a high-impact, fast-paced commercial setting. In this guide we’ll explore how academics can successfully pivot from the research lab to the cyber security industry. Learn how to apply rigorous, theory-driven approaches to real-world challenges, from designing secure software architectures to neutralising advanced persistent threats. By embracing the industry’s urgency and end-to-end mindset, you can transform your scholarly insights into robust, market-facing security solutions that protect companies and users on a global scale.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.