DevOps Engineer
Posted 1 week ago by Square One Resources
£77 Per hour
Inside
Hybrid
England, United Kingdom
Summary: The DevOps Engineer role involves enhancing a tier 1 banking client's Jenkins Shared Library and delivering secure, efficient pipelines. The position requires expertise in CI/CD and DevSecOps, with a focus on optimizing performance and ensuring artifact integrity. The role is based in Sheffield, Birmingham, or Edinburgh, with a hybrid working arrangement. It is a contract position lasting 8 months and classified as inside IR35.
Key Responsibilities:
- Design and maintain Groovy pipeline steps (build, test, package, scan, deploy).
- Extend Python tooling for SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation.
- Optimize performance (parallel builds, caching, scope-reduced BOMs, dependency prefetch).
- Ensure artifact integrity (correct SHA1/SHA256 mapping, reproducible inputs, evidence modeling).
- Refactor legacy scripts (remove global state, consolidate hashing, standardize templates).
- Document ci-config.yaml standards and usage patterns.
- Troubleshoot and prevent pipeline incidents.
- Mentor engineers on secure pipeline development and supply-chain practices.
Key Skills:
- 7+ years engineering; 3+ in CI/CD platform or DevSecOps.
- Strong Jenkins + Groovy shared library expertise.
- Advanced Python automation (JSON/YAML processing, tooling scripts).
- Deep Maven/NPM/Python packaging knowledge; exposure to Helm/Terraform and container image metadata.
- Supply-chain security (SLSA, CycloneDX SBOM, digests).
- Experience with SonarQube, Sonatype IQ, container and SAST scanning.
- Compliance Awareness.
- Proven performance tuning (caching, parallelization, dependency pruning).
Salary (Rate): £77.00/hr
City: Sheffield
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
Job Title: DevOps Engineer
Location : Sheffield, Birmingham or Edinburgh (Either location - 3 x days per week on site)
Salary/Rate: Up to £3571 per day
Start Date: April 2026
Job Type: 8-month contract (Inside IR35)
Company Introduction: Own and evolve our tier 1 banking clients Jenkins Shared Library, powering multi-language builds (Java/Maven, Node/NPM, Python, Helm, Terraform, containers). Deliver fast, secure, provenance-rich pipelines (SLSA, SBOM, digests) and strengthen supply chain integrity across teams.
Job Responsibilities/Objectives:
- Design and maintain Groovy pipeline steps (build, test, package, scan, deploy).
- Extend Python tooling for SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation (SonarQube, Sonatype IQ, SAST/Container).
- Optimize performance (parallel builds, caching, scope-reduced BOMs, dependency prefetch).
- Ensure artifact integrity (correct SHA1/SHA256 mapping, reproducible inputs, evidence modeling).
- Refactor legacy scripts (remove global state, consolidate hashing, standardize templates).
- Document ci-config.yaml standards and usage patterns.
- Troubleshoot and prevent pipeline incidents.
- Mentor engineers on secure pipeline development and supply-chain practices.
Required Skills/Experience The ideal candidate will have the following:
- 7+ years engineering; 3+ in CI/CD platform or DevSecOps.
- Strong Jenkins + Groovy shared library expertise.
- Advanced Python automation (JSON/YAML processing, tooling scripts).
- Deep Maven/NPM/Python packaging knowledge; exposure to Helm/Terraform and container image metadata.
- Supply-chain security (SLSA, CycloneDX SBOM, digests).
- Experience with SonarQube, Sonatype IQ, container and SAST scanning.
- Compliance Awareness
- Proven performance tuning (caching, parallelization, dependency pruning).