DevSecOps Security Engineer
Posted 1 day ago by Experis UK
£650 Per day
Inside
Undetermined
Manchester, England, United Kingdom
Summary: The DevSecOps Security Engineer role involves supporting a strategic initiative focused on the implementation and optimization of security tools within CI/CD pipelines. The position requires collaboration on secure application migration and the development of documentation for security findings. The engineer will also provide guidance on secure coding practices and conduct codebase analysis to identify vulnerabilities. This role is critical in integrating security into the development lifecycle and enhancing overall security posture.
Key Responsibilities:
- Evaluate, implement, and configure SAST and SCA tools (e.g., Wiz, Veracode, Checkmarx, Snyk, SonarQube)
- Integrate security tooling into CI/CD pipelines (GitHub, Jenkins, BitBucket)
- Collaborate on secure migration of applications
- Develop and maintain documentation and reporting for security findings and tool usage
- Provide guidance on secure coding practices and developer enablement
- Conduct codebase analysis, identify vulnerabilities, and support remediation efforts
Key Skills:
- Proven experience with SAST/SCA tools and their integration into development workflows
- Strong understanding of DevSecOps principles and secure SDLC
- Hands-on experience with CI/CD pipelines and automation
- Familiarity with cloud platforms (AWS, Azure, or OpenShift) and migration best practices
- Knowledge of container security (Docker, Kubernetes)
- Excellent communication and documentation skills
Salary (Rate): £650 Per Day
City: Manchester
Country: United Kingdom
Working Arrangements: undetermined
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
Role Title: DevSecOps Security Engineer
Duration: 6 Months
Location: Manchester or Glasgow
Rate: £650 Per Day - Umbrella only
Would you like to join a global leader in consulting, technology services and digital transformation? Our client is at the forefront of innovation to address the entire breadth of opportunities in the evolving world of cloud, digital and platforms.
Role Purpose / Summary
We are seeking an experienced DevSecOps Engineer to support a strategic initiative involving:
- Implementation and optimisation of existing and new SCA and SAST tooling
- Integration of security into CI/CD pipelines
Key Responsibilities
- Evaluate, implement, and configure SAST and SCA tools (e.g., Wiz, Veracode, Checkmarx, Snyk, SonarQube)
- Integrate security tooling into CI/CD pipelines (GitHub, Jenkins, BitBucket)
- Collaborate on secure migration of applications.
- Develop and maintain documentation and reporting for security findings and tool usage
- Provide guidance on secure coding practices and developer enablement.
- Conduct codebase analysis, identify vulnerabilities, and support remediation efforts.
Required Skills & Experience
- Proven experience with SAST/SCA tools and their integration into development workflows
- Strong understanding of DevSecOps principles and secure SDLC
- Hands-on experience with CI/CD pipelines and automation
- Familiarity with cloud platforms (AWS, Azure, or OpenShift) and migration best practices
- Knowledge of container security (Docker, Kubernetes)
- Excellent communication and documentation skills
All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!