DevSecOps Engineer, Principal

Aristocrat Tech Europe P/L
London
1 year ago
Applications closed

Related Jobs

View all jobs

Senior DevSecOps Engineer - Outside IR35

Senior Security Engineer

Senior Network Engineer

Logistics Software Engineer

Senior DevSecops Engineer - Outside IR35

Techncial Delivery Lead

We are seeking a highly skilled and experienced Principal DevSecOps Engineer to join our team. As our Principal DevSecOps Engineer, you will play a critical role in shaping and implementing secure DevOps practices across our organization. You will lead the design, development, and implementation of secure DevOps pipelines, integrating security measures seamlessly into our software development lifecycle. The ideal candidate will have a strong background in DevOps, deep knowledge of cybersecurity principles, and a passion for driving innovation in secure software delivery.

This role will require a person that is comfortable researching, implementing, mentoring, and presenting ideas and opportunities across teams in multiple locations globally.

What You'll Do

Lead the design, development, and implementation of DevOps pipelines with a focus on security best practices. Ensure that security is integrated throughout the software development lifecycle (SDLC). Develop automation scripts and tools to streamline security processes, including vulnerability scanning, code analysis, and security testing. Implement automated checks into CI/CD pipelines to enforce security standards. Collaborate with cross-functional teams to define secure architecture patterns and design principles. Provide guidance on security requirements for infrastructure, applications, and microservices. Work with our Global Information Security team to conduct threat modelling exercises to identify potential security threats and vulnerabilities. Perform risk assessments and develop mitigation strategies to address security risks effectively. Promote security awareness and best practices across the organization through training sessions, workshops, and documentation. Mentor junior team members on secure coding practices and DevSecOps methodologies. Keep abreast of the latest cybersecurity threats, vulnerabilities, and industry best practices. Evaluate emerging technologies and tools to enhance the security posture of our DevOps environment.

What We're Looking For

A strong background in DevOps, DevSecOps, working as a DevSecOps Consultant, Engineer, Architect or similar. Expert level of software security and development practices and implementations. Expert level knowledge and experience of Kubernetes, on-prem and on cloud providers. Expert level of Cyber Security experience. Solid understanding of security protocols, cryptography, authentication, authorization, and security. Proven track record creating a common architecture vision and implementing the strategic alignment across multiple teams. 5+ years of demonstratable and significant experience of implementing Docker and Kubernetes in an enterprise environment. 5+ years of experience of delivering CI/CD pipelines to automate everything. Strong interpersonal, verbal, and written communication skills, with the ability to develop and conduct presentations to peers and management teams. Self-directed with the ability manage own work and life balance.

Even if you don't tick every box, if you think the role would be a good match with your skills we would still love to hear from you.

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

Jobs Careers

Cyber Security Jobs for Career Switchers in Their 30s, 40s & 50s (UK Reality Check)

If you’re thinking about switching into cyber security in your 30s, 40s or 50s, you’re in good company. Across the UK, organisations of all sizes are hiring people from diverse backgrounds to protect systems, data & customers. But with hype around “hackers” & quick-win courses, it’s hard to separate reality from fiction. This guide gives you a UK reality check: which roles genuinely exist, what employers actually want, how training really works, what to expect on salary & progression & whether age matters. Whether you come from finance, project management, operations, law, HR or customer service, there is a credible route into cyber security if you approach it strategically.

Jobs

How to Write a Cyber Security Job Ad That Attracts the Right People

Cyber security is now a board-level priority for organisations across the UK. From financial services and healthcare to critical infrastructure, SaaS platforms and the public sector, demand for skilled cyber security professionals continues to grow. Yet despite this demand, many employers struggle to attract the right candidates. Cyber security job adverts often generate large volumes of applications, but few are a genuine match. Meanwhile, experienced security engineers, analysts and architects quietly ignore adverts that feel vague, unrealistic or disconnected from real security work. In most cases, the problem is not a lack of talent — it is the quality of the job advert. Cyber security professionals are trained to assess risk, spot weaknesses and question assumptions. A poorly written job ad signals organisational immaturity and weak security culture. A well-written one signals seriousness, competence and trust. This guide explains how to write a cyber security job ad that attracts the right people, improves applicant quality and positions your organisation as a credible security employer.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.