3 of 3 Contract SLSA Jobs in England

DevOps Engineer

Hiring Organisation
CBSbutler Holdings Limited
Location
Birmingham, West Midlands, United Kingdom
Employment Type
Contract
standards. Key Responsibilities Design, build, and maintain Jenkins Shared Library pipeline steps (build, test, package, scan, deploy). Develop and extend Python tooling for: SLSA provenance SBOM generation (CycloneDX) Hash/digest accuracy (SHA1/SHA256) Security scan aggregation (SonarQube, Sonatype IQ, SAST, container scanning) Optimise pipeline performance through parallelisation … understanding of Maven, NPM, and Python packaging . Exposure to Helm, Terraform, and container image metadata . Solid experience with software supply-chain security (SLSA, CycloneDX SBOMs, digests). Hands-on use of SonarQube, Sonatype IQ, SAST, and container scanning tools . Proven ability to optimise CI/CD performance ...

DevX Build Pipeline Engineer

Hiring Organisation
CBSbutler Holdings Limited
Location
Birmingham, West Midlands, United Kingdom
Employment Type
Contract
standards. Key Responsibilities Design, build, and maintain Jenkins Shared Library pipeline steps (build, test, package, scan, deploy). Develop and extend Python tooling for: SLSA provenance SBOM generation (CycloneDX) Hash/digest accuracy (SHA1/SHA256) Security scan aggregation (SonarQube, Sonatype IQ, SAST, container scanning) Optimise pipeline performance through parallelisation … understanding of Maven, NPM, and Python packaging . Exposure to Helm, Terraform, and container image metadata . Solid experience with software supply-chain security (SLSA, CycloneDX SBOMs, digests). Hands-on use of SonarQube, Sonatype IQ, SAST, and container scanning tools . Proven ability to optimise CI/CD performance ...

Devops Engineer

Hiring Organisation
Vallum Associates
Location
S11, Ecclesall, Sheffield, South Yorkshire, United Kingdom
Employment Type
Contract
Devops Engineer- Contract inside ir35- Hybrid Core Responsibilities: Design and maintain Groovy pipeline steps (build, test, package, scan, deploy). Extend Python tooling for SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation (SonarQube, Sonatype IQ,SAST/Container). Optimize performance (parallel builds, caching, scope-reduced … processing, tooling scripts). Deep Maven/NPM/Python packaging knowledge; exposure to Helm/Terraform and container image metadata. Supply-chain security (SLSA, CycloneDX SBOM, digests). Experience with SonarQube, Sonatype IQ, container and SAST scanning. Proven performance tuning (caching, parallelization, dependency pruning). Compliance Awareness. ...