of the following - CI/CD Pipelines, ideally Azure DevOps IaC code tooling , including Terraform, Ansible, Harbor SCA/IAST/DAST tooling, e.g. Black Duck, Coverity, Codesight, JFrog, Snyk Automated Test tooling , ideally Selenium/Robot Framework Test Management Tooling ideally Azure Test Plans Secure Secrets Management, ideally Azure DevOps and Hashicorp Vault Version control with Git General Software More ❯
of the following - CI/CD Pipelines, ideally Azure DevOps IaC code tooling , including Terraform, Ansible, Harbor SCA/IAST/DAST tooling, e.g. Black Duck, Coverity, Codesight, JFrog, Snyk Automated Test tooling , ideally Selenium/Robot Framework Test Management Tooling ideally Azure Test Plans Secure Secrets Management, ideally Azure DevOps and Hashicorp Vault Version control with Git Your benefits More ❯
Employment Type: Permanent
Salary: £78000/annum 15% bonus, £6k car, 10% DV bonus
Basingstoke, Hampshire, South East, United Kingdom
Anson Mccade
Infrastructure & Secrets: IaC tooling (Terraform, Ansible), Harbor, and Secure Secrets Management (Azure DevOps, Hashicorp Vault). Application Security (AppSec): SCA/IAST/DAST tooling (e.g., Black Duck, Coverity, Snyk). Version Control: Deep proficiency with Git. Foundational: Software Development background, strong technical leadership, and expertise in DevSecOps practices. Benefits - Salary Up to £78K - £6k Car allowance - 15% Bonus More ❯
Responsibilities Own SecOps across our stack by managing secure AWS infrastructure, CI/CD pipelines, and developer environments using least-privilege and zero-trust principles. Integrate automated security scans (Snyk, Docker, IaC) into all stages of the SDLC. Design, implement, and maintain AWS infrastructure as code using Terraform and Ansible Deliver threat models and drive remediations across cloud services (EC2 … secure MFA + least-privilege access across AWS, Bitbucket, and key tools Identify and remediate top 5 security risks in CI/CD pipelines and cloud architecture Fully integrate Snyk into all pipelines with automated alerts and reporting 6 months Mature pipelines to support automated tests, security gates, and gated deploys across all services 12 months Implement full-stack observability … Infrastructure (AWS): EC2, S3, RDS, IAM, VPC, CloudWatch, CloudTrail, Lambda, SQS/SNS CI/CD Pipelines: Bitbucket Pipelines (or similar), multi-stage pipeline management, gated deployments Security Operations: Snyk, IAM policies, threat modeling, zero-trust access, MFA, secrets management Implementing and automating compliance requirements (IEC 62304, ISO 27001, HIPAA, MDR) Delivering secure software pipelines for , React, and Docker-based More ❯
