Lead DevSecOps Engineer – Clerkenwell

Company: CBSbutler Holdings Limited trading as CBSbutler
Apply for the Lead DevSecOps Engineer – Clerkenwell
Location: London
Job Description:

Salary: £? – ? per year

Requirements

  • Proven experience as a DevSecOps Lead, establishing and operating DevSecOps ways of working and associated tooling across CI/CD and GitOps, security and compliance tooling, containers and orchestration, Infrastructure as Code, observability, scripting and automation, and cloud and networking fundamentals.
  • Hands-on experience with tools and technologies such as GitHub Actions, Argo CD, Argo Rollouts, Trivy, HashiCorp Vault, cert-manager, Docker, AWS EKS, Terraform, Grafana, Loki, Python, Bash, AWS IAM, S3, and network policies.
  • Experience delivering within the UK Government Digital Service lifecycle on a public sector engagement.
  • Experience working with and leading distributed and hybrid teams.
  • Demonstrated ability to work across cross-functional teams, particularly with developers, testers, and DevSecOps engineers.
  • Strong facilitation, communication, and stakeholder management skills, with experience influencing at multiple levels.

Responsibilities

  • We design, implement, document, and continuously improve DevSecOps practices across delivery teams.
  • We build secure, automated CI/CD pipelines and integrate security scanning into build, test, and deployment workflows.
  • We manage the vulnerability lifecycle, including allowlist processes and risk acceptance where required.
  • We oversee secrets management, identity and access management, and policy enforcement for workloads, container images, and infrastructure.
  • We maintain observability, monitoring, logging, and audit controls.
  • We partner with developers to embed secure-by-design engineering and ensure compliance with MOD security standards.
  • We enable and govern Infrastructure as Code practices across teams and environments.
  • We contribute to incident response, patching cycles, and compliance reporting, ensuring lessons learned are captured and actions are tracked.
  • We document security processes, controls, and operational runbooks in Confluence.
  • We drive and coordinate DevSecOps practices across multiple digital products and support coordinated release activity across the integrated platform estate.

Technologies

  • AWS
  • Azure
  • Bash
  • CI/CD
  • Cloud
  • Confluence
  • DevSecOps
  • Docker
  • GitHub
  • GitOps
  • Grafana
  • IAM
  • Network
  • Oracle
  • Python
  • Security
  • Terraform
  • DevOps

#J-18808-Ljbffr…

Posted: June 30th, 2026