DevSecOps Engineer - ONSITE

Join to apply for the DevSecOps Engineer - ONSITE role at Talkspirit.

Get AI-powered advice on this job and more exclusive features.

Location: Mon-Fri onsite in Debden IG10

Offices a 5-minute walk from Debden tube station (Central line).

Salary: Approx. £90k + pension + health benefits

Additional perks include free onsite gym & parking.

Please only apply if you can work from their Debden offices Monday-Friday. Hybrid or remote working is not available.

Established in 2009 and regulated by the FCA, this multi-award-winning finance & credit company has a proven track record for customer and employee satisfaction, with a Trustpilot rating of 4.8/5 and over 33,500 online reviews. They pride themselves on customer service and responsible lending.

This is an initial 6-month contract for an experienced DevSecOps Engineer focused on securing Azure infrastructure, integrating security automation, PCI DSS compliance, vulnerability testing, and incident response. The role involves developing and maintaining secure Azure DevOps pipelines and Infrastructure as Code (IaC) using Terraform, mentoring an internal engineer, and managing Sentinel, Defender, and SOAR solutions for automated threat response. Collaboration with third-party support is also key.

1. Architect and secure Azure infrastructure using Terraform.
2. Design and optimize Azure DevOps pipelines with embedded security.
3. Leverage Azure Security Centre, Microsoft Defender, and Sentinel for security monitoring.
4. Oversee SOAR solutions including SOC Prime.
5. Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS).
6. Conduct vulnerability assessments and penetration testing.
7. Ensure PCI DSS compliance through audits and risk assessments.
8. Implement DNS security solutions.
9. Develop incident response processes with third-party support.
10. Develop SIEM solutions, logging, and threat intelligence strategies.
11. Define and enforce security policies and procedures.
12. Mentor internal engineers and coordinate with external security partners.
13. Ensure comprehensive documentation for post-contract continuity.

• Strong expertise in Azure security, Microsoft Defender, and Sentinel.
• Experience with SOAR technologies, penetration testing, and vulnerability assessments.
• Proficiency with Terraform and IaC security automation.
• Knowledge of DevOps pipelines, PCI DSS, SIEM, and security frameworks.
• Scripting skills (Python, Bash, PowerShell).
• Excellent interpersonal skills and ability to work onsite daily.

• Certifications such as Azure Security Engineer, CISSP, OSCP, CCSP.
• Experience with container security (Docker, Kubernetes).
• Knowledge of NIST, ISO 27001, SOC 2, and Zero Trust principles.

Please only apply if you are able to work from their Debden offices Monday-Friday. No hybrid or remote options available.

NB: For non-UK citizens, sponsorship is not available. Visa must allow unrestricted work in the UK for at least 5 years.

By applying, you consent to Profile 29 processing your data for recruitment purposes. Privacy policy at: profile-29.com/privacy