DevOps Specialist

DevSecOps Engineer – Security Led Delivery

London / Hybrid

£500–£550 per day

Outside IR35

6-Month Contract

We’re supporting a major media & entertainment organisation looking for a hands-on DevSecOps Engineer to drive application security and BAM (Business Application Measures) improvements across a large enterprise environment.

This is a delivery-focused role where you’ll take ownership of security remediation activities, CI/CD security integration, GitHub governance, and DevSecOps tooling improvements across multiple critical systems.

They need someone technical who can actively drive security controls from “agreed” through to implementation.

Key experience required:

• Strong DevSecOps / Application Security engineering background
• GitHub administration & GitHub Advanced Security (GHAS)
• CI/CD pipeline security integration
• SAST / DAST tooling (CodeQL, Semgrep, OWASP ZAP etc.)
• Secret scanning, dependency scanning, container & IaC scanning
• OIDC / short-lived credentials
• Security remediation & vulnerability management
• JIRA / Agile delivery environments
• Strong stakeholder management & delivery ownership

Nice to have:

• BAM / governance programme experience
• Datadog / SIEM / EDR exposure
• Pen testing remediation
• OWASP / Secure SDLC knowledge
• Cloud / container security exposure

The client is looking for someone proactive, organised, and technically strong who can operate across development, infrastructure, security, and operational teams whilst keeping delivery momentum moving.