National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

DevSecOps Engineer - ONSITE

TieTalent
Loughton
4 days ago
Create job alert

Join to apply for theDevSecOps Engineer - ONSITErole atTieTalent

17 hours ago Be among the first 25 applicants

Join to apply for theDevSecOps Engineer - ONSITErole atTieTalent

Mon-Fri onsite in Debden IG10

Offices a 5 mins walk from Debden tube station (Central line)

About

Job: DevSecOps Engineer (Debden IG10) - ONSITE

Mon-Fri onsite in Debden IG10

Offices a 5 mins walk from Debden tube station (Central line)

Salary to approx. £90k + pension + health

Free onsite gym & parking

NB: Please only apply if you are able to work from their Debden (IG10) offices Monday-Friday. Hybrid or remote working is not available. Candidates must be able to demonstrate a sub-60 mins each-way commute time.

Company

Established in 2009 and regulated by the FCA, this multi-award-winning finance & credit company has a proven track record for customer and employee satisfaction. With a Trustpilot rating of 4.8/5 and over 33,500 combined online reviews, they pride themselves on their customer service and their duty as a responsible lender.

Role

This company is seeking an experienced DevSecOps Engineer for an initial 6-month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response.

This role will focus on developing and maintaining secure, scalable Azure DevOps pipelines and Infrastructure as Code (IaC) using Terraform. Their ideal candidate will have a strong background in cloud security best practices, automation, and a proactive approach to integrating security across their software delivery lifecycle.

A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response.

Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture.

Responsibilities

Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code.

DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines with security embedded at every stage.

Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring.

Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime.

Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS).

Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and security scanning to proactively identify and remediate risks.

PCI DSS Compliance: Conduct security audits, risk assessments, and ensure regulatory compliance.

DNS Security: Implement and monitor DNS security solutions to prevent cyber threats.

Incident Response: Formulating and documenting a solid process utilising a 3rd party support partner

Security Monitoring & Logging: Develop SIEM solutions, logging strategies, and real-time threat intelligence. Monitor, audit, and improve infrastructure security posture using automated tooling.

Policy & Procedures: Define and enforce security policies, incident response strategies, and structured action plans for proactive risk mitigation.

Collaboration & Mentoring: Support and upskill an internal engineer, ensuring long-term knowledge transfer and security expertise.

Liaising with Third-Party Support Partners: Work closely with external security providers, vendors, and consultants to coordinate security solutions, manage incident response processes, and ensure best practices align with organizational security strategy.

Documentation & Handover: Ensure detailed documentation and knowledge transfer for post-contract continuity.

Required

Strong expertise in Azure cloud security, Microsoft Defender, and Microsoft Sentinel.

Proven experience in SOAR technologies for security automation and response orchestration.

Hands-on experience with penetration testing, vulnerability assessments, and security scanning.

Experience implementing and managing WAF, IPS, and DNS security solutions.

Extensive experience with Terraform for IaC security automation.

Knowledge of DevOps pipelines (CI/CD) and security hardening.

Deep understanding of PCI DSS compliance, security frameworks, and audit processes.

Familiarity with SIEM solutions, security orchestration platforms, and log management.

Strong experience with incident response planning, threat detection, and mitigation.

Ability to define security policies, procedures, and structured action plans for compliance and risk management.

Proficiency in scripting languages (Python, Bash, PowerShell) for security automation.

Strong interpersonal skills to mentor and train internal engineers while working effectively in an office environment.

Experience working with third-party support partners, vendors, and security consultants to manage external security operations.

Desirable

Certifications: Azure Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent.

Experience with container security (Docker, Kubernetes).

Knowledge of NIST, ISO 27001, SOC 2 compliance frameworks.

Familiarity with Zero Trust security principles.

Other Stuff

NB: Please only apply if you are able to work from their Debden (IG10) offices Monday-Friday. Hybrid or remote working is not available. Candidates must be able to demonstrate a sub-60 mins each-way commute time.

NB: for non-UK Citizens: we cannot accept applications from anyone requiring sponsorship (now or in the future) for UK permanent employment status. If you are utilising a work visa this must allow you to work in the UK unrestricted for at least the next 5 years.

In accordance with GDPR by applying you give Profile 29 consent to use your data for recruitment purposes only (details of Profile 29s privacy policy can be found at: profile-29 .com/privacy)

Profile 29 recruitment keywords: DevSecOps DevOps Azure cloud security Microsoft Defender Microsoft Sentinel WAF IPS DNS pcidss pci dss pci-dss soar loughton Debden essex London

TITL1_UKTJ

Nice-to-have skills

  • Azure
  • Terraform
  • PCI DSS
  • Python
  • Bash
  • Powershell
  • Docker
  • Kubernetes
  • ISO 27001
  • Loughton, England, United Kingdom

Work experience

  • DevOps
  • Cyber Security Specialist

Languages

  • English

Seniority level

  • Seniority levelMid-Senior level

Employment type

  • Employment typeFull-time

Job function

  • Job functionEngineering and Information Technology
  • IndustriesTechnology, Information and Internet

Referrals increase your chances of interviewing at TieTalent by 2x

Sign in to set job alerts for “Software Engineer” roles.

London, England, United Kingdom 3 weeks ago

London, England, United Kingdom 3 days ago

London, England, United Kingdom 4 weeks ago

London, England, United Kingdom 3 weeks ago

London, England, United Kingdom 2 months ago

London, England, United Kingdom 3 days ago

London, England, United Kingdom 2 weeks ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 3 weeks ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 2 weeks ago

London, England, United Kingdom 1 year ago

London, England, United Kingdom 1 month ago

London, England, United Kingdom 2 weeks ago

London Area, United Kingdom £35,000.00-£40,000.00 1 month ago

Graduate Software Engineer 2025 - RegTech

London, England, United Kingdom 3 weeks ago

London, England, United Kingdom 3 weeks ago

London, England, United Kingdom 1 month ago

London, England, United Kingdom 2 weeks ago

London, England, United Kingdom 5 months ago

Newsroom Front-End Developer (12 Month FTC/Secondment)

Isleworth, England, United Kingdom 2 weeks ago

London, England, United Kingdom 3 days ago

Graduate Software Engineer 2025 - RegTech

London, England, United Kingdom 1 week ago

London, England, United Kingdom 7 months ago

London, England, United Kingdom 1 month ago

London, England, United Kingdom 6 months ago

London, England, United Kingdom 1 day ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 2 years ago

London, England, United Kingdom 2 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.


#J-18808-Ljbffr

Related Jobs

View all jobs

DevSecOps Engineer

DevSecOps Engineer

DevSecOps Engineer

DevSecOps Engineer

DevSecOps Engineer

DevSecOps Engineer

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Cyber Security Jobs Skills Radar 2026: Emerging Frameworks, Tools & Certifications to Learn Now

Cyber threats are evolving—and so must the people defending against them. As ransomware, AI-enhanced phishing, and supply chain attacks grow more advanced, UK employers are urgently hiring cyber security professionals with the right mix of strategic and hands-on skills. Welcome to the Cyber Security Jobs Skills Radar 2026, your go-to guide for the most in-demand tools, frameworks, certifications, and technologies shaping the UK's cyber workforce. Whether you're a SOC analyst, penetration tester, or cloud security architect, this annual radar is designed to help you stay ahead of the market.

How to Find Hidden Cyber Security Jobs in the UK Using Professional Bodies like BCS, CIISec & More

The demand for skilled cyber security professionals in the UK has never been higher. With threats increasing in sophistication and frequency, organisations are urgently hiring ethical hackers, threat analysts, GRC specialists, and security architects. But many of the most valuable roles—particularly in government, defence, and critical infrastructure—are never publicly advertised. Instead, these jobs are shared behind the scenes through trusted networks, private communities, and professional bodies. In this article, we explore how to uncover hidden cyber security jobs in the UK using organisations like the BCS (The Chartered Institute for IT), CIISec (The Chartered Institute of Information Security), ISACA, and ISC² UK Chapter. We’ll show you how to use membership directories, special interest groups, CPD events and informal networks to gain early access to roles most people never see.

How to Get a Better Cyber Security Job After a Lay-Off or Redundancy

Redundancy is never easy—especially in a fast-moving field like cyber security, where your skills and experience are constantly evolving. But if you’ve recently been made redundant from a cyber security role, know this: the UK cyber workforce remains in high demand, and your expertise is more valuable than ever. Whether you’re a SOC analyst, penetration tester, incident responder, security architect or GRC specialist, there are still thousands of opportunities across sectors including finance, defence, government, retail, and critical infrastructure. This guide will help you turn redundancy into a career relaunch, with a clear action plan tailored to the UK cyber security job market.