DevSecOps Engineer

DevSecOps Engineer – Security Led Delivery, 6 months, London/Hybrid, £550 - £600/day

We’re supporting a major media & entertainment organisation looking for a hands-on DevSecOps Engineer to drive application security and BAM (Business Application Measures) improvements across a large enterprise environment.

This is a delivery-focused role where you’ll take ownership of security remediation activities, CI/CD security integration, GitHub governance, and DevSecOps tooling improvements across multiple critical systems.

They need someone technical who can actively drive security controls from “agreed” through to implementation.

Key experience required:

Strong DevSecOps / Application Security engineering background

GitHub administration & GitHub Advanced Security (GHAS)

CI/CD pipeline security integration

SAST / DAST tooling (CodeQL, Semgrep, OWASP ZAP etc.)

Secret scanning, dependency scanning, container & IaC scanning

OIDC / short-lived credentials

Security remediation & vulnerability management

JIRA / Agile delivery environments

Strong stakeholder management & delivery ownership

Nice to have:

BAM / governance programme experience

Datadog / SIEM / EDR exposure

Pen testing remediation

OWASP / Secure SDLC knowledge

Cloud / container security exposure

The client is looking for someone proactive, organised, and technically strong who can operate across development, infrastructure, security, and operational teams whilst keeping delivery momentum moving.