DevSecOps Engineer with Visa Sponsorship

About the Company

Deloitte is a leading global professional services network, offering audit and assurance, consulting, financial advisory, risk advisory, tax, and related services. Our purpose is to make an impact that matters for our clients, our people, and society. We are committed to fostering a diverse and inclusive environment where every individual can thrive and make a significant contribution.

Job Description

As a DevSecOps Engineer at Deloitte in Bristol, you will play a crucial role in integrating security practices into the entire software development lifecycle. We are looking for a proactive and experienced engineer to champion security by design, automate security controls, and foster a culture of security awareness within our development teams. This role involves working with cutting-edge technologies and collaborating with cross-functional teams to deliver secure, high-quality solutions for our diverse client portfolio. We offer visa sponsorship for exceptional international talent eager to contribute to our innovative projects in the United Kingdom.

Key Responsibilities

• Design, implement, and maintain robust security controls within CI/CD pipelines.
• Automate security testing processes, including SAST, DAST, and SCA.
• Conduct security reviews and threat modeling for applications and infrastructure.
• Collaborate with development and operations teams to embed security best practices early in the development lifecycle.
• Monitor, detect, and respond to security incidents and vulnerabilities.
• Manage and optimize security tools and platforms (e.g., SIEM, WAF, IDS/IPS).
• Provide expert guidance on secure coding practices and security architecture.
• Contribute to the continuous improvement of our DevSecOps strategy and security posture.
• Mentor junior engineers and promote a security-first mindset across teams.

Required Skills

• Proven experience as a DevSecOps Engineer or similar role.
• Strong understanding of cloud security principles and practices (AWS, Azure, or GCP).
• Expertise in CI/CD tools (e.g., Jenkins, GitLab CI, Azure DevOps).
• Proficiency in scripting languages (e.g., Python, Bash, PowerShell).
• Experience with containerization and orchestration technologies (e.g., Docker, Kubernetes).
• Solid knowledge of security testing tools (SAST, DAST, SCA).
• Familiarity with common security frameworks and standards (e.g., OWASP, NIST).
• Excellent problem-solving and communication skills.
• Ability to obtain and maintain necessary security clearances.

Preferred Qualifications

• Relevant security certifications (e.g., CISSP, CISM, OSCP, AWS Certified Security).
• Experience with Infrastructure as Code (IaC) tools (e.g., Terraform, Ansible).
• Background in software development or operations.
• Knowledge of compliance frameworks (e.g., GDPR, ISO 27001).
• Master's degree in Computer Science, Information Security, or a related field.

Perks & Benefits

• Comprehensive health, dental, and vision insurance.
• Generous pension plan.
• Flexible working arrangements, including hybrid model.
• Professional development opportunities and career growth programs.
• Visa sponsorship and relocation support for eligible candidates.
• Employee assistance program and wellness initiatives.
• Paid time off and public holidays.
• Access to a wide range of learning resources and certifications.

Apply Now