9 of 9 SBOM Jobs in the UK

etc.) Nice-to-Haves AWS Security Specialty, SANS, OSCP (skills over certificates, though!) Multi-cloud or hybrid security experience Container security & supply-chain/SBOM tooling Applied cryptography fundamentals (KMS, envelope encryption, etc.) Incident response or red/blue/purple team exposure OSS security contributions or AWS community involvement ...

Docker/Kubernetes), model registries, reproducibility. Performance Optimization : GPU acceleration (CUDA/cuDNN), mixed precision, XLA, profiling. Observability : Metrics, tracing, structured logging, dashboards. Security : SBOM, image signing, role-based access, vulnerability scanning. Preferred Qualifications Experience with ONNX Runtime Training, PyTorch, or hybrid ML architectures. Familiarity with distributed training strategies ...

Responsibilities Design, build, and maintain Jenkins Shared Library pipeline steps (build, test, package, scan, deploy). Develop and extend Python tooling for: SLSA provenance SBOM generation (CycloneDX) Hash/digest accuracy (SHA1/SHA256) Security scan aggregation (SonarQube, Sonatype IQ, SAST, container scanning) Optimise pipeline performance through parallelisation, caching, dependency ...

Responsibilities Design, build, and maintain Jenkins Shared Library pipeline steps (build, test, package, scan, deploy). Develop and extend Python tooling for: SLSA provenance SBOM generation (CycloneDX) Hash/digest accuracy (SHA1/SHA256) Security scan aggregation (SonarQube, Sonatype IQ, SAST, container scanning) Optimise pipeline performance through parallelisation, caching, dependency ...

The Company Superb opportunity to join a leading financial services client with offices in Edinburgh. This is an initial 6-month contract inside IR35. There will be a requirement to be in the office up ...

Analytics/Application Insights, plus Datadog/Grafana where appropriate. Embed security by design: Azure Policy, Defender for Cloud, secrets management with Key Vault, SBOM and image scanning, policy-as-code and least privilege IAM. Drive reliability using SRE practices: define SLIs/SLOs, error budgets, capacity planning, chaos testing … of the Microsoft Cloud Adoption Framework, Azure Landing Zones and the Well-Architected Framework. Familiarity with DevSecOps practices: threat modelling, dependency and container scanning, SBOM management, and shift-left security. Comfortable collaborating with software engineers and SREs; able to translate platform capabilities into simple self-service experiences. Excellent communication, documentation ...

Contract inside ir35- Hybrid Core Responsibilities: Design and maintain Groovy pipeline steps (build, test, package, scan, deploy). Extend Python tooling for SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation (SonarQube, Sonatype IQ,SAST/Container). Optimize performance (parallel builds, caching, scope-reduced BOMs, dependency … scripts). Deep Maven/NPM/Python packaging knowledge; exposure to Helm/Terraform and container image metadata. Supply-chain security (SLSA, CycloneDX SBOM, digests). Experience with SonarQube, Sonatype IQ, container and SAST scanning. Proven performance tuning (caching, parallelization, dependency pruning). Compliance Awareness. ...

Python, and Jenkins/Tekton Responsibilities: Design and maintain Groovy pipeline steps (build, test, package, scan, deploy). Extend Python tooling for SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation (SonarQube, Sonatype IQ, Optimize performance. Ensure artifact integrity. Refactor legacy scripts (remove global state, consolidate hashing … scripts). Deep Maven/NPM/Python packaging knowledge; exposure to Helm/Terraform and container image metadata. Supply-chain security (SLSA, CycloneDX SBOM, digests). Experience with SonarQube, Sonatype IQ, containers, and SAST scanning. Proven performance tuning (caching, parallelization, dependency pruning). ...

Python, and Jenkins/Tekton Responsibilities: Design and maintain Groovy pipeline steps (build, test, package, scan, deploy). Extend Python tooling for SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation (SonarQube, Sonatype IQ, Optimize performance. Ensure artifact integrity. Refactor legacy scripts (remove global state, consolidate hashing … scripts). Deep Maven/NPM/Python packaging knowledge; exposure to Helm/Terraform and container image metadata. Supply-chain security (SLSA, CycloneDX SBOM, digests). Experience with SonarQube, Sonatype IQ, containers, and SAST scanning. Proven performance tuning (caching, parallelization, dependency pruning). ...