Job Description
Job Title: SC Cleared iACE DevSecOps Engineer
Location: CorshamType: ContractSecurity Clearance: Active SC (Security Check) Clearance requiredSalary / Rate: £580 - £730
Role Overview:
We are seeking an experienced and security-cleared DevSecOps Engineer to join our expanding team, supporting the development and delivery of secure, scalable automation solutions within the iACE (Intelligent Automation Centre of Excellence). This is a hands-on technical role focused on embedding security across the development lifecycle, with a strong emphasis on automation, continuous integration, and secure deployment practices.
You’ll work alongside technical teams to design, implement, and support infrastructure and application pipelines in a high-assurance environment, ensuring security and compliance are integrated from the outset.
Key Responsibilities:
* Design, build and maintain secure CI/CD pipelines to support intelligent automation platforms
* Integrate static and dynamic security scanning tools into build and release workflows
* Ensure best practices for secure coding, containerisation, and infrastructure automation
* Implement Infrastructure as Code (IaC) to provision and manage environments
* Collaborate with cross-functional teams to embed security at every phase of delivery
* Deploy and manage containerised applications using platforms such as Docker and Kubernetes
* Support vulnerability remediation, compliance reporting, and secure configuration management
* Monitor system performance and respond to security events within DevOps workflows
Essential Skills & Experience:
* Current SC (Security Check) Clearance is required
* Demonstrable experience in DevSecOps or similar roles within secure or regulated environments
* Proficiency in CI/CD tools (e.g., Jenkins, GitLab CI, Azure DevOps, or similar)
* Strong knowledge of containerisation and orchestration technologies (Docker, Kubernetes)
* Solid experience with Infrastructure as Code tools (Terraform, Ansible, or equivalent)
* Practical knowledge of automated security tooling (e.g., SonarQube, Trivy, OWASP ZAP)
* Experience with monitoring and logging systems (e.g., ELK stack, Prometheus, Grafana, Splunk)
* Scripting capability (e.g., Python, Bash, or PowerShell)
* Familiarity with secure software development lifecycle (SSDLC) principles
Desirable:
* Exposure to high-assurance or compliance-driven environments (e.g., critical infrastructure, finance, aerospace)
* Understanding of secure automation and intelligent process automation (IPA) platforms
* Knowledge of common security frameworks and standards (e.g., ISO 27001, NIST, CIS Benchmarks)
* Certifications in cloud security, DevOps, or Kubernetes (e.g., AWS/GCP/Azure DevOps, CKA, Security+)
* Experience supporting or developing within automation centres of excellence (CoE)