DevSecOps Advisory Consultant
- London
- Contract
- Full-time
Banking
Hybrid: Onsite in London 3 days per week
6 months+
£800 - £900 per dayIn short: Working with the Front Office Product and Business Platform team, we require a strong DevSecOps Consultant to assess our current pipeline and advise on where we can increase our measures of security. We're interested in technical consultants that will look at the minute detail and relate that to the bigger picture. Bering able to present findings to a wide audience will be crucial to make this role a success. We want to know who the leading companies are and how they secure their pipeline so we are very much open to ideas! Within 3-4 months we'd like a full assessment documented and a plan put into place that you will assist in the delivery on.In full:We are seeking a highly skilled and experienced DevSecOps Subject Matter Expert (SME) to lead and advise on the integration of security practices into our DevOps pipelines. This role requires a deep understanding of development, security, and operations, with a strong emphasis on automation, continuous integration/continuous deployment (CI/CD), and secure software development lifecycle (SDLC) practices.Advise and offer guidance on:
- Design, implement, and maintaining secure CI/CD pipelines.
- Integrate security tools and practices into DevOps workflows (e.g., SAST, DAST, SCA, secrets management).
- Collaborate with development, operations, and security teams to implement and ensure secure coding and deployment practices.
- Advise on threat modeling, risk assessments, and vulnerability management.
- Provide expert guidance on cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes).
- Develop and enforce security policies, standards, and best practices.
- Lead incident response and root cause analysis for security-related issues.
- Mentor and train teams on DevSecOps principles and tools.