DevSecOps Engineer

TL;DR

DevSecOps Engineer (Cloud Security): Integrating security controls into engineering and cloud delivery pipelines with an accent on CI/CD automation, vulnerability management, and infrastructure hardening. Focus on embedding secure-by-design practices across Azure cloud workloads, Kubernetes clusters, and containerized application lifecycles.

Location: Must be based in Leeds, United Kingdom

Company

hirify.global provides enterprise data management solutions and investment intelligence to the global investment community.

What you will do

• Integrate automated security controls like SAST, SCA, and DAST into CI/CD pipelines.
• Engineer and maintain tooling for vulnerability management across code, containers, and cloud workloads.
• Automate security guardrails for Azure resources, Kubernetes, API gateways, and serverless architectures.
• Collaborate with DevOps and Engineering teams to implement threat modelling and secure coding practices.
• Support the deployment of security policies including IAM, key vaults, and network hardening baselines.
• Contribute to incident response activities regarding pipeline and application security.

Requirements

• Proven experience in DevOps or platform engineering with a strong security focus.
• Hands-on experience with CI/CD platforms like Azure DevOps, GitHub Actions, or Jenkins.
• Understanding of OWASP Top 10 and SANS/CWE Top 25 application security principles.
• Experience with Infrastructure as Code using tools such as Terraform or Bicep.
• Familiarity with cloud security, preferably within an Azure environment.
• Ability to translate complex security risks into engineering-friendly action plans.

Nice to have

• Experience with Kubernetes (AKS) and service mesh security.
• Knowledge of Zero Trust design principles and threat modelling frameworks.
• Integrating security telemetry into SIEM/SOAR pipelines.

Culture & Benefits

• Focus on diversity and inclusion throughout the recruitment and career progression process.
• Opportunity to work on complex data management systems powering significant global assets.
• Commitment to professional development and secure engineering training.
• Collaboration across global teams within a technology-led investment intelligence environment.