151 to 175 of 180 DevSecOps Jobs in the UK excluding London

modelling, and security tooling (e.g. SAST, DAST, SCA, IaC scanning, container security, etc.), ensuring consistency and maturity in how applications are built and maintained. By aligning teams with modern DevSecOps principles, developer enablement, and security automation, the role plays a critical part in improving the overall security posture of Flutter's software estate. Overall, the Senior Product Security Architect is … integration experience is a plus Familiarity with industry frameworks and standards: OWASP SAMM, OWASP ASVS, BSIMM, NIST SSDF, ISO 27034. Lead teams and projects. This could be as an DevSecOps team lead, security architect, or manager for SSDLC initiatives. Professional certifications in security are highly valued, such as CISSP/CSSLP, CISM, and/or other AppSec-specific certifications. What More ❯

note - The selected candidate must be eligible for UK Security Clearance *** The Security Development and Test Director is responsible for overseeing the secure software development lifecycle, security testing, and DevSecOps practices at both strategic and operational levels. The role ensures the effectiveness of security practices in software development, manages security testing, drives operational maturity improvements, and oversees secure coding practices. … profitability analysis. o Monitor expenses and identify cost reduction opportunities. o Ensure profitability through forecasting and margin analysis. o Refine pricing models and maximise billable utilisation. * Secure Architecture and DevSecOps Integration o Define and govern secure architecture standards across development teams, ensuring alignment with enterprise security policies, regulatory requirements, and industry frameworks (e.g., NIST, OWASP, ISO 27001). o Lead … security scanners. o Establish architectural review boards and security design checkpoints to validate that new systems and applications meet defined security requirements before deployment. o Drive continuous improvement in DevSecOps maturity, using metrics and feedback loops to refine processes, reduce risk exposure, and accelerate secure delivery. o Collaborate with enterprise architects, engineering leads, and product owners to ensure security is More ❯

redefining how enterprise-grade security is built, deployed, and continuously improved. They're now seeking a Security Development and Test Director to lead their secure software engineering function, drive DevSecOps maturity, and embed security across the development lifecycle. This is a client-facing, commercially strategic position - ideal for a security leader who thrives at the intersection of technical delivery and … business growth. Why join? Shape and scale a modern secure-by-design function in a high-growth global firm Strategic autonomy to influence architecture standards, DevSecOps integration, and engineering culture Engage directly with major enterprise clients and shape security roadmaps that matter Be part of a company recognised for its DEI leadership and investment in career development What you'll … within CI/CD workflows Owning security tooling strategy (SAST, DAST, SCA, container scanning) and driving adoption across development pipelines Building and mentoring high-performing teams in secure coding, DevSecOps, and threat modelling Leading engagements with major clients during pre-sales, delivery and review phases Managing financials, resource planning, and service maturity across the Secure SDLC portfolio Acting as escalation More ❯

+ £6,000 Car Allowance | Senior Director Level This is a rare opportunity for an accomplished leader in secure development to shape and drive the future of secure architecture, DevSecOps integration, and software security testing across large-scale transformation programmes. You'll work at both strategic and operational levels, embedding secure-by-design principles across software pipelines while driving improvements … oversee secure development and testing strategy across the SDLC Define and govern secure architecture and ensure alignment with enterprise policies and industry frameworks (e.g. OWASP, NIST, ISO 27001) Drive DevSecOps integration into CI/CD pipelines, embedding SAST, DAST, SCA and container security tools Own the security testing process, improving automation, coverage, and remediation velocity Champion secure design, threat modelling … the function, including budgeting, utilisation, pricing and profitability Lead architectural governance, review boards, and secure design checkpoints Coach and upskill development and QA teams in security best practice and DevSecOps maturity Act as the senior escalation point for clients and internal teams, ensuring delivery excellence What You'll Bring: 10+ years in secure software development, with 5+ in senior/ More ❯

NIST SP800, MOD JSPs, DEFSTANs, and airworthiness directives (e.g., DO-326A, DO-178C). Design secure cloud and hybrid environments using Azure and AWS, incorporating Zero Trust Architecture and DevSecOps methodologies. Collaborate with cross-functional teams to embed cybersecurity into digital transformation initiatives. Evaluate emerging threats, technologies, and regulatory changes to inform strategic security decisions. Support certification and assurance processes … Experience with cross-domain solutions and secure communications systems. Knowledge of MBSE, SysML, and enterprise architecture tools (e.g., Sparx EA, Cameo). Exposure to secure software development practices and DevSecOps pipelines. More ❯

high-quality software solutions in a mission-focused environment. We are looking for someone with a strong software engineering background and hands-on experience in modern practices such as DevSecOps, cloud migration, microservices architecture, and infrastructure as code. In this role, you will provide both technical direction and personnel leadership, supporting the development of innovative, scalable systems, while mentoring a … activities including architecture, development, deployment, and testing. Essential Skills & Experience: Proficiency in one or more software languages: Java, C/C++, Python, TypeScript, ReactJS Understanding of modern engineering practices: DevSecOps, cloud platforms, IaC tools, SRE Experience working with microservice architectures and containerised environments. Strong leadership and mentoring skills, with the ability to inspire and guide a team. Excellent communication skills More ❯

scalability. Heavy Investment in Technology: The business is investing significantly in modern cloud platforms, AI, and automation. Agile Done Right: Be part of an Agile environment with a strong DevSecOps culture and a commitment to continuous improvement. People-First Culture: Consistently ranked in the Times Top 25 Employers for the past 10 years, this organisation genuinely looks after its people. … in OO languages, such as C#, Java, Python, etc, and modern front-end frameworks. Experience with React, Angular, Blazor, Vue, or ASP.NET MVC. Secure coding practices and familiarity with DevSecOps tools. Proven ability to lead, mentor, and communicate effectively across teams. Bonus Skills: Experience with generative AI, machine learning, and AI-driven development. Familiarity with Docker, Kubernetes, and serverless platforms. More ❯

scalability. Heavy Investment in Technology: The business is investing significantly in modern cloud platforms, AI, and automation. Agile Done Right: Be part of an Agile environment with a strong DevSecOps culture and a commitment to continuous improvement. People-First Culture: Consistently ranked in the Times Top 25 Employers for the past 10 years, this organisation genuinely looks after its people. … in OO languages, such as C#, Java, Python, etc, and modern front-end frameworks. Experience with React, Angular, Blazor, Vue, or ASP.NET MVC. Secure coding practices and familiarity with DevSecOps tools. Proven ability to lead, mentor, and communicate effectively across teams. Bonus Skills: Experience with generative AI, machine learning, and AI-driven development. Familiarity with Docker, Kubernetes, and serverless platforms. More ❯

various data use cases, supporting a shift towards a green and sharing economy for modern luxury services. We seek engineers passionate about innovative problem solving, quality-first coding, and DevSecOps practices. Responsibilities Lead the architecture and integration for complex solutions, with strong hands-on software engineering experience across the full SDLC and mobile app development Lead Swift development technically and … personally for our mobile teams Improve and establish DevSecOps practices, including CI/CD pipelines Ensure system designs and implementations meet customer needs and align with JLR application strategies and technical requirements Ensure developed systems adhere to all internal and external standards Define technical roadmaps and strategies for systems and oversee their delivery Provide technical hands-on support to Software More ❯

mission-critical AI capability for deployment in a secure environment and need platform engineers who thrive in complex, high-stakes settings. You’ll work on the cutting edge of DevSecOps, enabling LLM-backed systems to run without cloud dependencies on uncertain, low-spec hardware in some of the most demanding settings in the world. What You’ll Be Doing: Designing … Managing self-hosted models (e.g., LLMs, transcription systems) for disconnected inference Implementing secure service meshes, logging and monitoring stacks Supporting on-site test events, troubleshooting deployments and connectivity Embedding DevSecOps practices into infrastructure workflows Collaborating with security stakeholders to align with accreditation frameworks What You’ll Bring: Hands-on expertise in Kubernetes, with experience in constrained or disconnected environments Strong More ❯

DevSecOps Delivery Manager £550 - £580pd (Inside IR35) 8 months, potential to be extended Swindon - once a month onsite One of our established clients are looking for a Technical Delivery Manager to join them on a contract basis up until the end of March The business themselves was founded almost 10 years ago to boost the innovation and research capabilities of … They operate across the whole of the UK with a combined budget of more than £6 billion, investing in areas such as Medical, Biotechnology and Environmental research As a DevSecOps Delivery Manager you will act as a central figure in driving the successful delivery of DevSecOps-related initiatives, ensuring the team is supported, processes are optimized, and project outcomes align … with organisational goals. To be considered you need to have experience in the following: Strong knowledge of Agile methodologies and DevSecOps principles. Excellent communication, organisation, and stakeholder management skills. Familiarity with project management tools (e.g., Jira, Confluence) and incident management systems. Ability to work in a fast-paced, dynamic environment while supporting a high-performing technical team. Experience working with More ❯

About Squarcle: Squarcle is a growing strategy and operations consultancy dedicated to driving the performance of our clients. We are people orientated and pride ourselves on our people-first culture. Unlike many consultancies, Squarcle is as equally dedicated to delivery More ❯

Cyber Security and Cloud Resilience Analyst Hybrid working. 1-2 days per month in the office. Buzz words you should identify with: Cyber Security, GRC, AWS, DevOps, DevSecOps, Dockers, ISO27001, NIST, Cyber Essentials, CISSP, Technical Architecture Work for a Not-for-Profit compliance company working in the green sector. Responsible for: 1) Cyber Security governance and delivery across the company … and their suppliers. Covering: Governance, threat detection, reports, SIEM, DevSecOps 2) Cloud Architecture and Resilience. AWS estate and the platform applications. Assessment of risk and resilience. AWS cloud costs, technical debt, overview of architecture. This is not a technical hands-on position (other than maybe some config and creation of threat reports). However, you will need a technical background More ❯

and implement proportionate security and cyber architectures. Develop and maintain security documentation (e.g., risk assessments, test plans). Ensure compliance with MOD and government security standards. Collaborate with engineering, DevSecOps, and infrastructure teams. Provide strategic input on security direction and project planning. Identify and mitigate vulnerabilities in complex systems. Support the secure integration of emerging technologies. Essential Experience 4+ years … communication and technical writing skills. Desirable Experience Familiarity with MOD/HMG security policies (e.g., JSP 440, 604, 892). Experience working with classified government systems. Knowledge of Agile, DevSecOps, and CI/CD in secure environments. Understanding of secure system design and cloud technologies. Benefits Competitive salary and bonus scheme Flexible working arrangements On-site facilities (parking, gym, café More ❯

and implement proportionate security and cyber architectures. Develop and maintain security documentation (e.g., risk assessments, test plans). Ensure compliance with MOD and government security standards. Collaborate with engineering, DevSecOps, and infrastructure teams. Provide strategic input on security direction and project planning. Identify and mitigate vulnerabilities in complex systems. Support the secure integration of emerging technologies. Essential Experience 4+ years … communication and technical writing skills. Desirable Experience Familiarity with MOD/HMG security policies (e.g., JSP 440, 604, 892). Experience working with classified government systems. Knowledge of Agile, DevSecOps, and CI/CD in secure environments. Understanding of secure system design and cloud technologies. Benefits Competitive salary and bonus scheme Flexible working arrangements On-site facilities (parking, gym, café More ❯

if we use in-house resource instead of 3rd party vendors Providing WAF focused SME support and advice on Web & API based attack methodologies, evasions and mitigation techniques Providing DevSecOps SME & pipeline build support for the automation works Monitor and review all tuning requests. Conduct detailed log analysis to identify false positives and optimize WAF rules for improved accuracy and … and custom rules, new features, and solutions. Facilitate the automation of efficacy testing procedures and their integration into Continuous Integration/Continuous Deployment (CI/CD) pipelines. Contribute to DevSecOps and pipeline construction projects. When needed, reverse-engineer attackers' exploits and payloads to devise mitigation rules Ensuring timely and accurate review and action on all WAF tuning requests. Conducting thorough More ❯

The IT Support Apprentice reports to Squarcle’s IT Manager. Main duties include supporting the IT Manager in configuring, maintaining, securing and supporting the business's internal environments (MS Azure/Office365, networks etc). Additionally, the apprentice will provide More ❯

requests at one time that will mean working closely with the Change Teams and other stakeholders to resolve any issues so that implementation can be as seamless as possible. DevSecOps support for maintaining automation pipeline and delivery works, identifying additional automation use cases for RTB to better streamline processes. They will form key relationships with senior stakeholders from the Business … a thorough understanding of web application security. Analytical skills to review and align platforms with MVP and Baseline Configurations, leveraging a deep knowledge of WAF functionalities and limitations. Providing DevSecOps pipeline maintenance support for the automation works Familiarity with IDAM protocols and access control measures for WAF management, informed by strong web security knowledge. Understanding of HTTPS inspection, including Termination More ❯

/Threat/Forensics or CSIRT backgrounds - very experienced with analysing security logs to quickly ascertain TP/FP conviction and the techniques to except Ideally some AppSec/DevSecOps or Ethical Hacking experience - with a good understanding of Web Application attacks and security; they must be familiar with the OWASP Top 10 If they have Security Engineering skills too … if we use in-house resource instead of 3rd party vendors. Providing WAF focused SME support and advice on Web & API based attack methodologies, evasions and mitigation techniques. Providing DevSecOps SME & pipeline build support for the automation works Monitor and review all tuning requests. Conduct detailed log analysis to identify false positives and optimize WAF rules for improved accuracy and More ❯

Platform strategy Managing the ongoing relationship with our strategic vendors including Google Being the ultimate point of escalation for your technology tower Implementing Operational Excellence Driving the adoption of DevSecOps best practices Providing the technical direction and oversight of our Google cloud platforms Driving automation and cost efficiency across our Cloud platforms Mentoring and inspiring a diverse team of Product … deliver success Technical expertise and experience in key technologies as defined below Demonstrable experience in leading managed services/high-value third-party contracts Working knowledge of agile methodologies & DevSecOps frameworks Outstanding communication skills that go beyond "tech talk" - the ability to translate complex IT matters to those without an IT background A credible and established expert with good commercial More ❯

Platform strategy Managing the ongoing relationship with our strategic vendors including Google Being the ultimate point of escalation for your technology tower Implementing Operational Excellence Driving the adoption of DevSecOps best practices Providing the technical direction and oversight of our Google cloud platforms Driving automation and cost efficiency across our Cloud platforms Mentoring and inspiring a diverse team of Product … deliver success Technical expertise and experience in key technologies as defined below Demonstrable experience in leading managed services/high-value third-party contracts Working knowledge of agile methodologies & DevSecOps frameworks Outstanding communication skills that go beyond "tech talk" - the ability to translate complex IT matters to those without an IT background A credible and established expert with good commercial More ❯

About the Role We are seeking a proactive and detail-oriented Cybersecurity Analyst to join a leading engineering and technology organisation operating across Defence, Aerospace, and Industrial sectors. This role is critical in safeguarding digital assets, ensuring compliance with regulatory More ❯

Job: DevSecOps Engineer (Debden IG10) - ONSITE Mon-Fri onsite in Debden IG10 Offices a 5 mins walk from Debden tube station (Central line) Salary to approx. £90k + pension + health Free onsite gym & parking NB: Please only apply if you are able to work from their Debden (IG10) offices Monday-Friday. . click apply for full job details More ❯

environment and with the tool Paddle would be extremely beneficial. With no existing DevOps capability, you'll be tasked with establishing CI/CD pipelines, Infrastructure as Code (IaC), DevSecOps integration, and improving platform reliability and maturity. Experience Required: Previously set up a DevOps practice from scratch CI/CD Infrastructure as Code (IaC) DevSecOps Experience working with Salesforce Familiarity More ❯

Test Director to lead a rapidly growing security capability at a major global consultancy. This is a leadership role where you'll shape strategic offerings around secure software development, DevSecOps, and security testing - while staying hands-on enough to influence tooling, architecture, and delivery standards across complex client environments. You'll be joining a high-performing cyber team with serious … backing and a strong pipeline of transformation work across multiple sectors. What you'll be doing: Leading the definition and implementation of secure architecture and DevSecOps practices across large-scale client programmes Overseeing security testing operations - including tooling (SAST, DAST, SCA), processes and coverage Driving service maturity and quality across delivery, with a focus on automation, governance, and continuous improvement … What we're looking for: 10+ years in secure software development/application security 5+ years leading technical teams or practices at Director or equivalent level Deep understanding of DevSecOps, CI/CD integration, and secure SDLC Experience engaging with clients at C-level and managing complex stakeholder landscapes A strong mix of technical depth, commercial acumen, and delivery leadership More ❯