Senior DevSecOps Engineer

Gallagher
London
1 week ago
Create job alert

Introduction


Join us at Gallagher Re, the trailblazers of the reinsurance world, where every day brings new opportunities to shape the future. We empower our clients with cutting-edge analytics and insights, providing them the confidence to make strategic decisions that transform industries. As a team member, youll be at the forefront of innovation, translating data into impactful solutions and taking the reins of your career like never before.


We believe that every candidate brings something special to the table, including you! So, even if you feel that youre close but not an exact match, we encourage you to apply.


Overview


As a Senior DevSecOps Engineer at Gallagher Re, you will play a vital role in integrating security practices into our DevOps processes. With a technical focus, your primary responsibility will be to ensure the secure and efficient development, deployment, and operation of our software systems. Your expertise in DevOps, combined with your deep understanding of security, will help us incorporate Static Application Security Testing (SAST) scanning and other security measures throughout our development lifecycle.


Engaging with colleagues across Gallagher Re, youll have an inquisitive approach to your work, engaging early and being prepared to offer constructive challenges where appropriate to build knowledge across the entire organisation.


This role offers a real opportunity to shape the day-to-day experience of hundreds of colleagues and will give you opportunities to stretch and develop your own skillset by working on challenging problems, collaborating with colleagues to grow both individually and as a team, delivering the very best outcomes for our business.


We are encouraging applications across the United Kingdom as this role will be predominantly remote, the entire Technology Team do meet once a month in London so travel to this will be required.


How youll make an impact


  1. Design, implement, and maintain secure and efficient CI/CD pipelines, integrating SAST scanning and other security tools
  2. Collaborate with development, operations, and security teams to ensure security best practices are followed throughout the development lifecycle
  3. Continuously monitor and assess the security posture of our software systems, identifying and addressing vulnerabilities and risks
  4. Implement and maintain infrastructure-as-code (IaC) solutions, ensuring security and compliance requirements are met
  5. Manage and configure cloud environments, ensuring appropriate security measures, such as access control, encryption, and logging, are in place
  6. Develop and maintain secure container orchestration solutions, leveraging technologies like Kubernetes and Docker
  7. Stay up-to-date with the latest security vulnerabilities, trends, and best practices, proactively incorporating relevant findings into our DevSecOps processes
  8. Assist in the development and enforcement of security policies, procedures, and guidelines for the engineering team
  9. Participate in incident response and remediation efforts, ensuring timely resolution of security issues
  10. Provide technical guidance and support to colleagues in understanding and implementing DevSecOps best practices


About you


  1. Extensive experience in DevOps, with a focus on security, preferably in a Senior DevSecOps Engineer or similar role
  2. Hands-on experience with Static Application Security Testing (SAST) tools and their integration into CI/CD pipelines
  3. Deep understanding of security concepts, practices, and technologies, such as access control, encryption, and vulnerability management
  4. Proficiency in infrastructure-as-code (IaC) tools, such as Terraform, Ansible, or CloudFormation
  5. Experience with container orchestration technologies, such as Kubernetes and Docker
  6. Familiarity with cloud platforms and services, such as AWS, Azure, or GCP
  7. Experience with scripting and automation skills, preferably in languages like Python, Bash, or PowerShell
  8. Excellent problem-solving abilities and attention to detail
  9. Fantastic communication and collaboration skills
  10. Passion for continuous learning and improvement in the realm of DevSecOps and security


Compensation and benefits


On top of a competitive salary, great teams and exciting career opportunities, we also offer a wide range of benefits.


Below are theminimum core benefitsyoull get, depending on your job level these benefits may improve:


  1. Minimum of 25 days holiday, plus bank holidays, and the option to buy extra days
  2. Defined contribution pension scheme, which Gallagher will also contribute to
  3. Life insurance, which will pay 4x your basic annual salary, which you can top-up to 10x
  4. Income protection, well cover up to 50% of your annual income, with options to top up
  5. Health cash plan or Private medical insurance


Other benefits include:


  1. Three fully paid volunteering days per year
  2. Employee Stock Purchase plan, offering company shares at a discount
  3. Share incentive plan, HMRC approved, tax effective, stock purchase plan
  4. Critical illness cover
  5. Discounted gym membership, with over 3,000 gyms nationally
  6. Season ticket loan
  7. Access to a discounted voucher portal to save money on your weekly shop or next big purchase
  8. Emergency back-up family care
  9. And many more...


We value inclusion and diversity


Inclusion and diversity (I&D) is a core part of our business, and its embedded into the fabric of our organisation. For more than 95 years, Gallagher has led with a commitment to sustainability and to support the communities where we live and work.


Gallagher embraces our employees diverse identities, experiences and talents, allowing us to better serve our clients and communities. We see inclusion as a conscious commitment and diversity as a vital strength. By embracing diversity in all its forms, we live out The Gallagher Way to its fullest.


Gallagher is Disability Confident Committed. We have pledged to make sure our recruitment process is inclusive and accessible, in addition to supporting our existing employees with any long-term health conditions or disabilities.


We understand that applicants may have disabilities, if you do, you may find some parts of the recruitment process more challenging than others. Dont worry, were here to help, however, we can only do this if you let us know.


Should you require reasonable adjustments to your application, please get in touch with . If youd prefer to speak on the phone, please request a call back, leaving details, so we get in touch.


Our employing entity, Arthur J. Gallagher Services (UK) Limited, is proud to be accredited as a Living Wage employer with the Living Wage Foundation. We are committed to diversity and opportunity for all and are opposed to any form of less favourable treatment on the grounds of gender or gender identity, marital status, civil partnership status, parental status, race, ethnicity, colour, nationality, disability, sexual orientation, religion/ belief, age and those with caring responsibilities.


Gallagher believes that all persons are entitled to equal employment opportunity and prohibits any form of discrimination by its managers, employees, vendors or customers based on race, color, religion, creed, gender (including pregnancy status), sexual orientation, gender identity (which includes transgender and other gender non-conforming individuals), gender expression, hair expression, marital status, parental status, age, national origin, ancestry, disability, medical condition, genetic information, veteran or military status, citizenship status, or any other characteristic protected (herein referred to as "protected characteristics") by applicable federal, state, or local laws.


Equal employment opportunity will be extended in all aspects of the employer-employee relationship, including, but not limited to, recruitment, hiring, training, promotion, transfer, demotion, compensation, benefits, layoff, and termination. In addition, Gallagher will make reasonable accommodations to known physical or mental limitations of an otherwise qualified person with a disability, unless the accommodation would impose an undue hardship on the operation of our business.

J-18808-Ljbffr

Related Jobs

View all jobs

Senior DevSecOps Engineer

Senior DevSecOps Engineer

Senior Security Engineer (DevSecOps)Identity/AuthenticationFinance

Senior DevOps Engineer

Senior Application Security Engineer

Senior Security Engineer

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Portfolio Projects That Get You Hired for Cyber Security Jobs (With Real GitHub Examples)

With rising cyber threats and increasingly sophisticated attacks, cyber security has become a critical priority for organisations worldwide. From penetration testers (pentesters) and SOC analysts to cloud security engineers and threat intelligence specialists, the demand for skilled cyber security professionals continues to surge. But how do you stand out in a growing field? Alongside your CV, an impressive cyber security portfolio can be the distinguishing factor that convinces employers you’re the right fit. In this comprehensive guide, you’ll discover: Why a cyber security portfolio is essential for job seekers in this domain. How to align portfolio projects with different cyber security career paths. Real GitHub examples that demonstrate best practices in security-focused projects. Actionable project ideas you can start today, from penetration testing labs to blue-team detection pipelines. Best practices for organising your repos and presenting your work so hiring managers can instantly see your impact. When you’re ready to pursue your next opportunity, remember to upload your CV on CyberSecurityJobs.tech. Our specialised platform connects talented security professionals with employers who need your expertise—exactly what your portfolio will showcase.

Cyber Security Job Interview Warm‑Up: 30 Real Coding & System‑Design Questions

The need for skilled cyber security professionals has never been greater. As organisations rapidly digitise their operations and store increasing amounts of sensitive data online, cyber threats loom large—ranging from sophisticated ransomware attacks to insider threats and state‑sponsored espionage. Against this backdrop, cyber security jobs remain some of the most in‑demand and mission‑critical roles on the market. If you’re preparing for a cyber security interview, expect to be tested on a broad spectrum of topics—from secure coding and incident response to network security architecture and compliance standards. In many cases, companies also include problem‑solving exercises and system design scenarios to gauge how well you can apply theoretical knowledge to real‑world threats. To help you ace these assessments, we’ve compiled 30 real coding & system‑design questions you might encounter. Each reflects a key area of cyber security—whether it’s encryption and key management, threat modelling, or designing a zero‑trust network. Along the way, we’ll offer insights and best practices so you can stand out from the crowd. If you’re on the lookout for exciting cyber security roles in the UK, head to www.cybersecurityjobs.tech. There, you’ll discover a range of positions—covering everything from penetration testing and threat intelligence to compliance management and security operations. Let’s dive into the essentials of interview readiness.

Negotiating Your Cybersecurity Job Offer: Equity, Bonuses & Perks Explained

How to Secure Compensation That Reflects Your Value in the UK’s High-Stakes Cybersecurity Sector Introduction As cyber threats grow more sophisticated and frequent, cybersecurity professionals have never been more in demand. From thwarting ransomware attacks to architecting secure cloud infrastructures, mid‑senior cybersecurity experts play a critical role in safeguarding a company’s data and reputation. Thanks to this growing reliance on cybersecurity, employers in the UK are going above and beyond simple salary offers to attract the top echelon of talent. Although base salary remains a key component of any job offer, the broader package—encompassing equity, bonuses, and perks—can often surpass what you’d gain from a small bump in monthly pay. For cybersecurity specialists working in areas such as threat intelligence, incident response, penetration testing, or compliance, the complexity and risk mitigation you bring to the table is massive. Knowing how to negotiate the entire package ensures you are duly rewarded for keeping an organisation’s data, assets, and operations safe. In this guide, we’ll delve into every aspect of negotiating a cybersecurity job offer. Whether you’re pivoting to a mid‑senior role or cementing your expertise at an established security consultancy, understanding the full range of compensation elements will help you secure an offer that acknowledges the criticality of what you do. Let’s explore equity options, performance bonuses, and the perks that matter most, so you can come out of your next job negotiation confident that you’re getting more than just a salary.