SC Cleared iACE DevSecOps Engineer

Job Title:SC Cleared iACE DevSecOps Engineer

Location:Corsham
Type:Contract
Security Clearance:Active SC (Security Check) Clearance required
Salary / Rate:£580 - £730

Role Overview:

We are seeking an experienced and security-clearedDevSecOps Engineerto join our expanding team, supporting the development and delivery of secure, scalable automation solutions within theiACE (Intelligent Automation Centre of Excellence). This is a hands-on technical role focused on embedding security across the development lifecycle, with a strong emphasis on automation, continuous integration, and secure deployment practices.

Youll work alongside technical teams to design, implement, and support infrastructure and application pipelines in a high-assurance environment, ensuring security and compliance are integrated from the outset.

Key Responsibilities:

• Design, build and maintain secure CI/CD pipelines to support intelligent automation platforms

• Integrate static and dynamic security scanning tools into build and release workflows

• Ensure best practices for secure coding, containerisation, and infrastructure automation

• Implement Infrastructure as Code (IaC) to provision and manage environments

• Collaborate with cross-functional teams to embed security at every phase of delivery

• Deploy and manage containerised applications using platforms such as Docker and Kubernetes

• Support vulnerability remediation, compliance reporting, and secure configuration management

• Monitor system performance and respond to security events within DevOps workflows

Essential Skills & Experience:

• CurrentSC (Security Check) Clearanceis required

• Demonstrable experience in DevSecOps or similar roles within secure or regulated environments

• Proficiency in CI/CD tools (e.g., Jenkins, GitLab CI, Azure DevOps, or similar)

• Strong knowledge of containerisation and orchestration technologies (Docker, Kubernetes)

• Solid experience with Infrastructure as Code tools (Terraform, Ansible, or equivalent)

• Practical knowledge of automated security tooling (e.g., SonarQube, Trivy, OWASP ZAP)

• Experience with monitoring and logging systems (e.g., ELK stack, Prometheus, Grafana, Splunk)

• Scripting capability (e.g., Python, Bash, or PowerShell)

• Familiarity with secure software development lifecycle (SSDLC) principles

Desirable:

• Exposure to high-assurance or compliance-driven environments (e.g., critical infrastructure, finance, aerospace)

• Understanding of secure automation and intelligent process automation (IPA) platforms

• Knowledge of common security frameworks and standards (e.g., ISO 27001, NIST, CIS Benchmarks)

• Certifications in cloud security, DevOps, or Kubernetes (e.g., AWS/GCP/Azure DevOps, CKA, Security+)

• Experience supporting or developing within automation centres of excellence (CoE)

JBRP1_UKTJ