SC Cleared iACE DevSecOps Engineer

Location: Corsham Type:  Contract Security Clearance: Active SC (Security Check) Clearance required Salary / Rate: £580 - £730

We are seeking an experienced and security-cleared DevSecOps Engineer to join our expanding team, supporting the development and delivery of secure, scalable automation solutions within the iACE (Intelligent Automation Centre of Excellence). This is a hands-on technical role focused on embedding security across the development lifecycle, with a strong emphasis on automation, continuous integration, and secure deployment practices.

You’ll work alongside technical teams to design, implement, and support infrastructure and application pipelines in a high-assurance environment, ensuring security and compliance are integrated from the outset.

• Design, build and maintain secure CI/CD pipelines to support intelligent automation platforms

• Integrate static and dynamic security scanning tools into build and release workflows

• Ensure best practices for secure coding, containerisation, and infrastructure automation

• Implement Infrastructure as Code (IaC) to provision and manage environments

• Collaborate with cross-functional teams to embed security at every phase of delivery

• Deploy and manage containerised applications using platforms such as Docker and Kubernetes

• Support vulnerability remediation, compliance reporting, and secure configuration management

• Monitor system performance and respond to security events within DevOps workflows

• Current SC (Security Check) Clearance is required

• Demonstrable experience in DevSecOps or similar roles within secure or regulated environments

• Proficiency in CI/CD tools (e.g., Jenkins, GitLab CI, Azure DevOps, or similar)

• Strong knowledge of containerisation and orchestration technologies (Docker, Kubernetes)

• Solid experience with Infrastructure as Code tools (Terraform, Ansible, or equivalent)

• Practical knowledge of automated security tooling (e.g., SonarQube, Trivy, OWASP ZAP)

• Experience with monitoring and logging systems (e.g., ELK stack, Prometheus, Grafana, Splunk)

• Scripting capability (e.g., Python, Bash, or PowerShell)

• Familiarity with secure software development lifecycle (SSDLC) principles

• Exposure to high-assurance or compliance-driven environments (e.g., critical infrastructure, finance, aerospace)

• Understanding of secure automation and intelligent process automation (IPA) platforms

• Knowledge of common security frameworks and standards (e.g., ISO 27001, NIST, CIS Benchmarks)

• Certifications in cloud security, DevOps, or Kubernetes (e.g., AWS/GCP/Azure DevOps, CKA, Security+)

• Experience supporting or developing within automation centres of excellence (CoE)