CrawlJobs Logo

DevSecOps Architect

United Kingdom, London · Job Posted February 21, 2026
Apply Position
Job Link Share

Job Description

We are looking for a DevSecOps Architect to join our Information Security team. In this role, you will be a collaborative and strategic partner to our engineering teams, helping design the automation that enables us to ship secure code at velocity. You will advocate for a 'Security by Design' culture, ensuring that robust security practices are seamlessly integrated into the fabric of our product development processes. Your goal is to architect and build a frictionless security environment where the secure path is the easiest path for our developers.

Job Responsibility

  • Architect Automated Security Pipelines: Partner with the Platform team to design and implement advanced automated security controls (SAST, DAST, SCA) within our CI/CD pipelines, providing engineers with rapid, high-fidelity feedback
  • Infrastructure and Policy as Code: You will guide the security architecture for our AWS environment by treating infrastructure as software enabling secure and scalable deployments and ensure automated compliance
  • Threat Detection Engineering: Engineer advanced threat detection capabilities by integrating platform logs and event data (including RabbitMQ) into our SIEM (Google Security Operations). You will develop and tune YARA-L rules to proactively identify and respond to threats
  • Collaborative Design and Threat Modelling: Partner with engineering squads during the design phase of new features, facilitating collaborative threat modelling sessions to build security in from the start
  • Developer Enablement: Create feedback loops that deliver security insights directly into developer workflows (e.g., automated PR comments), enabling teams to self-remediate and learn continuously

Requirements

  • Cloud Security Architecture: Experience designing secure, scalable architectures on cloud platforms
  • Infrastructure as Code: Experience securing Terraform codebases and building secure modules for other teams to use
  • CI/CD Orchestration: Experience with modern pipelines (e.g., CircleCI, GitHub Actions, or GitLab) and integrating security steps
  • Automation Engineering: Ability to write script and code (e.g., Python, Typescript) to build integrations and tooling
  • Modern Detection Engineering: An interest in or experience with modern detection engineering (e.g., Google Chronicle, YARA-L, or similar SIEM tools)
  • Architecture Patterns: Familiarity with securing API-first and Event-Driven Architectures
  • Incident Response and Operations: Participate in the team's on-call rotation, including out-of-hours coverage to support platform availability and security
  • Ambiguity: You thrive in ambiguous and fast-changing environments, and know how to make progress even when requirements are evolving

Nice to have

  • Experience with automated policy enforcement
  • Familiarity with functional programming concepts or Elixir (our core backend language)
  • Familiarity with securing AI/ML pipelines or services
  • Experience implementing SCA (Software Composition Analysis)
  • A pragmatic approach: You focus on high-impact security wins that support business agility rather than 'security for security's sake.'
  • Certifications like CISSP, CISM, or AWS Security are a bonus

What we offer

  • Time off - 27 days holiday, plus 5 additional days off: 1 life event day, 2 volunteer days, 2 company-wide wellbeing days (M-Powered Weekend) and 8 bank holidays per year
  • Health & Wellness- private medical Insurance with Bupa, a medical cashback scheme, life insurance, gym membership & wellness resources through Wellhub and access to Spill - all in one mental health support
  • Hybrid work offering - for most roles we collaborate in the office three days per week with the exception of Coaches and Instructors who collaborate in the office once a month
  • Work-from-anywhere scheme - you'll have the opportunity to work from anywhere, up to 10 days per year
  • Space to connect: Beyond the desk, we make time for weekly catch-ups, seasonal celebrations, and have a kitchen that’s always stocked!

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

DevSecOps Architect

8 matching positions

Principal Enterprise Architect - DevSecOps and Developer Platforms

Our Digital unit own's BT’s digital transformation, delivering brilliant custome...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
plus.net Logo
Plusnet
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 9+ years experience within the IT/Digital industry
  • 3-5 years experience of enterprise architecture
  • 3+ years experience of software engineering technologies (SCM, CI/CD, BDD/TDD, etc. across the entire SDLC)
  • 5+ years experience with technologies such as agile project management, issue/backlog management, collaboration tools, etc.
  • Personal experience of software development in an enterprise environment
  • Multi-sector experience, telecommunications is useful but not essential
  • 3+ years architecture experience of software engineering and related technologies
  • DevSecOps practices and capabilities such as SAST/DAST, SCA, SBOM etc.
  • Modern software engineering practices and cloud native technologies (Public Cloud: AWS, GCP, Azure
  • Kubernetes)
Job Responsibility
Job Responsibility
  • Sets and drives the enterprise architecture strategy for DevSecOps, leading the road mapping, goal setting, project execution, and roll-out strategy in tight partnership with stakeholders
  • Decides the viable architectural frameworks to implement that support long term maintainability, extensibility, and interoperability
  • Drives architectural assessments, technology selection, and technology roadmaps
  • Manages the alignment with cross-functional teams through the lifecycle to empower decision making
  • Operates as an SME within own field of expertise and acts as expert advisor to other teams and senior management on the most complex enterprise architecture related issues and provides consultation regarding opportunities to enhance efficiency and effectiveness in system capabilities
  • Leads the development of the conceptualization of innovative services or products within enterprise architecture
  • Mentors and coaches experienced professionals to develop current and future team capabilities and ensure performance
  • Ensure alignment to the wider security architecture strategy and capabilities, acting as a bridge between the digital and security architecture teams for DevSecOps
  • Fulltime
Read More
Arrow Right

Pre-Sales Solutions Architect SME- Secret Clearance

We are seeking an experienced Senior Pre-Sales Solutions Architect to serve as a...
Location
Location
United States , Herndon
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active Secret Security Clearance
  • Bachelor’s degree in Computer Science, Information Technology, or related field, or equivalent combination of education and experience
  • Minimum 15 years of experience supporting US Federal Government Agencies solve critical IT solutions
  • Minimum 10 years of experience leading or contributing to end-to-end data or digital transformation projects that meet Federal compliance standards, including FedRAMP, FISMA, and security best practices
  • Minimum 8 years of experience shaping, large professional services deals in excess of $100 million
  • Minimum 5 years in solutions architecture, technical presales, or consulting roles
  • Minimum 5 years leading senior customer discussions and managing executive stakeholders
  • Minimum 3 years of experience delivering presentations and technical demonstrations
  • Minimum 2 years of experience using AI technologies, such as Large Language Models, machine learning, or AI-driven automation
  • Must live within 30 miles of our offices in Herndon, Virginia
Job Responsibility
Job Responsibility
  • Serve as a trusted advisor to clients, establishing and nurturing long-term strategic partnerships through continuous engagement
  • Engage with C-suite and senior leadership, gaining deep understanding of client industry dynamics, data challenges, and mission objectives
  • Oversee the end-to-end delivery of complex engagements, ensuring successful outcomes across technology, financials, and operations
  • Lead presales strategy, solution development, and digital transformation initiatives for large, complex opportunities
  • Collaborate closely with sales teams to understand client requirements and design tailored, value-driven solutions
  • Lead discovery workshops, technical demonstrations, and proof-of-concept initiatives
  • Shape and structure deals, including staffing, pricing models, cost structures, and delivery approaches
  • Create and deliver compelling solution presentations and executive briefings
  • Develop content for RFPs and technical inquiries with accurate, compliant, and persuasive solution narratives
  • Support smooth handoffs from presales to delivery teams
  • Fulltime
Read More
Arrow Right

Devops Senior Programmer - Assistant Vice President

The Applications Development Senior Programmer Analyst is an intermediate level ...
Location
Location
India , Pune
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience
  • Experience in systems analysis and programming of software applications
  • Experience in managing and implementing successful projects
  • Working knowledge of consulting/project management techniques/methods
  • Ability to work under pressure and manage deadlines or unexpected changes in expectations or requirements
  • Bachelor’s degree/University degree or equivalent experience
  • Expert-level container orchestration and cloud-native technologies
  • Advanced infrastructure automation and IaC practices
  • Strong security engineering and DevSecOps implementation
  • Proficient in scripting languages
Job Responsibility
Job Responsibility
  • Conduct tasks related to feasibility studies, time and cost estimates, IT planning, risk technology, applications development, model development, and establish and implement new or revised applications systems and programs to meet specific business needs or user areas
  • Monitor and control all phases of development process and analysis, design, construction, testing, and implementation as well as provide user and operational support on applications to business users
  • Utilize in-depth specialty knowledge of applications development to analyze complex problems/issues, provide evaluation of business process, system process, and industry standards, and make evaluative judgement
  • Recommend and develop security measures in post implementation analysis of business usage to ensure successful system design and functionality
  • Consult with users/clients and other technology groups on issues, recommend advanced programming solutions, and install and assist customer exposure systems
  • Ensure essential procedures are followed and help define operating standards and processes
  • Serve as advisor or coach to new or lower level analysts
  • Has the ability to operate with a limited level of direct supervision
  • Can exercise independence of judgement and autonomy
  • Acts as SME to senior stakeholders and /or other team members
  • Fulltime
Read More
Arrow Right

Principal Engineer

About this role: Wells Fargo is seeking a Principal engineer for Architecture a...
Location
Location
India , BENGALURU
Salary
Salary:
Not provided
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 7+ years of progressive experience in software engineering, with at least 5+ years in cloud engineering roles
  • Proven experience in architecting and designing solutions on at least one major cloud platform – AWS, Azure, or GCP
  • Strong experience with Red Hat OpenShift, Kubernetes, Docker, and container lifecycle management
  • Proficiency in Infrastructure as Code using Terraform, Ansible, or CloudFormation
  • Solid understanding of CI/CD pipelines, GitOps practices, and DevOps toolchains (Jenkins, ArgoCD, GitHub Actions, etc.)
  • Proficiency in at least one programming language – Python, Go, Java, or Node.js
  • Strong grasp of microservices, distributed systems, and event-driven architectures
  • Excellent skills in system design, API integration, and technical documentation
  • Knowledge of cloud security, networking, monitoring, and cost management best practices
Job Responsibility
Job Responsibility
  • Act as an advisor to leadership to develop or influence applications, network, information security, database, operating systems, or web technologies for highly complex business and technical needs across multiple groups
  • Lead the strategy and resolution of highly complex and unique challenges requiring in-depth evaluation across multiple areas or the enterprise, delivering solutions that are long-term, large-scale and require vision, creativity, innovation, advanced analytical and inductive thinking
  • Translate advanced technology experience, an in-depth knowledge of the organizations tactical and strategic business objectives, the enterprise technological environment, the organization structure, and strategic technological opportunities and requirements into technical engineering solutions
  • Provide vision, direction and expertise to leadership on implementing innovative and significant business solutions
  • Maintain knowledge of industry best practices and new technologies and recommends innovations that enhance operations or provide a competitive advantage to the organization
  • Strategically engage with all levels of professionals and managers across the enterprise and serve as an expert advisor to leadership
  • Lead the design and architecture of enterprise-scale cloud-native solutions with a focus on scalability, security, and performance
  • Guide the engineering team technically, setting best practices and mentoring senior engineers
  • Collaborate closely with Cloud Architects, DevOps Engineers, and Application teams to design and implement cloud infrastructure using Infrastructure as Code (IaC)
  • Define and implement CI/CD pipelines, automation strategies, and monitoring solutions aligned with DevOps best practices
  • Fulltime
Read More
Arrow Right

Cloud Security Engineer (Pre-Award)

Barbaricum is a rapidly growing government contractor providing leading-edge sup...
Location
Location
United States
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Information Assurance, Computer Science, or related field
  • Five (5) years of equivalent professional experience may be substituted for a degree
  • Demonstrated experience implementing cloud security frameworks and controls
  • Experience configuring and administering IAM solutions in AWS and/or Azure environments
  • Experience conducting vulnerability assessments and security compliance reviews
  • Experience with Security Information and Event Management (SIEM) platforms
  • Experience implementing or supporting Zero Trust architectures
  • Experience with cloud security monitoring, incident detection, and response activities
  • Ability to obtain and maintain a Secret security clearance
Job Responsibility
Job Responsibility
  • Implement and maintain cloud security controls within AWS and Microsoft Azure environments
  • Ensure compliance with NIST 800-53 Rev. 5, FedRAMP, and DoD IL 2, IL 4, and IL 5 security requirements
  • Design and administer Identity and Access Management (IAM) solutions and privileged access controls
  • Support implementation of Zero Trust security architectures and security automation initiatives
  • Conduct vulnerability assessments, risk analyses, and remediation activities across cloud platforms
  • Configure and manage cloud-native security monitoring and logging capabilities
  • Integrate security controls into DevSecOps and CI/CD workflows
  • Support accreditation, audit preparation, and cybersecurity compliance reporting activities
  • Collaborate with system engineers, developers, and data architects to ensure secure solution design
  • Provide technical recommendations to improve the overall security posture of the EDA environment
Read More
Arrow Right
New

Devsecops Engineer

Randstad Digital, a specialized division for IT profiles of Randstad Italia, is ...
Location
Location
Italy , Roma
Salary
Salary:
40000.00 - 50000.00 EUR / Year
https://www.randstad.com Logo
Randstad
Expiration Date
August 18, 2026
Flip Icon
Requirements
Requirements
  • Master's degree, preferably in Information Security, IT, or related STEM fields
  • Professional fluency in English (C1 level)
  • Minimum 5 years of experience in DevOps, platform engineering, or API management roles, with at least 3 years in a leadership capacity
  • Deep experience in designing and maintaining secure CI/CD pipelines (Jenkins, GitLab CI/CD, Azure DevOps, or ArgoCD) and GitOps workflows
  • Proficiency in Infrastructure as Code (IaC) using Terraform, CloudFormation, or ARM templates
  • Strong knowledge of cloud services across AWS, Azure, or GCP, and containerization/orchestration technologies (Docker, Kubernetes, Helm)
  • Proven expertise in embedding Shift-Left Security, security toolchain integration (Snyk, SonarQube, Prisma Cloud), and secrets management (HashiCorp Vault)
  • Hands-on experience with API Gateway management (Apigee, Kong, Azure API Management) and security protocols (OAuth2, JWT, mTLS)
  • Relevant certifications such as CKA, AWS Certified DevOps Engineer - Professional, Azure/GCP equivalents, or CISSP are highly preferred
Job Responsibility
Job Responsibility
  • Architecting, supporting, and governing secure, scalable, and automated DevSecOps practices and API management platforms across the enterprise
  • Managing the end-to-end lifecycle of IT platforms, handling the transition and coexistence between current legacy systems and cloud-native architectures
  • Defining enterprise-wide DevSecOps strategies
  • Overseeing CI/CD pipelines
  • Embedding security controls early into the software development lifecycle (SDLC)
  • Designing API gateways and security policies while working closely with business stakeholders
What we offer
What we offer
  • Direct-hire, permanent contract with the client company
  • Flexible working arrangements with a strong focus on well-being, corporate welfare, and work-life balance
  • Performance-based variable bonus of €5,000 or €6,000
  • Corporate canteen on-site and €10 meal vouchers for remote days
  • Comprehensive corporate welfare package including supplementary health insurance, on-site osteopath, and professional counseling
Read More
Arrow Right

Software Engineer IV - Sales Domain (Java / Google Cloud / AI Enablement)

We are seeking a highly experienced Software Engineer IV to join our Sales Domai...
Location
Location
United States , Birmingham
Salary
Salary:
Not provided
genpt.com Logo
Genuine Parts Company
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Expert-level Java proficiency (modern Java versions, concurrency, streams, async patterns)
  • Strong experience with Spring Boot and/or Quarkus
  • Deep understanding of: Microservices architecture, RESTful API design, Event-driven systems, Distributed system patterns
  • Experience with relational databases, JDBC, ORM frameworks
  • Experience with NoSQL/document databases (MongoDB preferred)
  • Experience deploying and managing applications in Google Cloud Platform (preferred) or comparable cloud platforms
  • Experience with containerization (Docker) and CI/CD pipelines
  • Familiarity with Pub/Sub or Kafka-based messaging systems
  • Strong Git-based workflow experience
  • Working knowledge of Python and ability to understand, extend, or refactor Python-based services
Job Responsibility
Job Responsibility
  • Lead the design, development, and deployment of cloud-native Java microservices using Spring Boot and/or Quarkus within Google Cloud Platform
  • Architect scalable, reliable, and secure systems aligned to enterprise modernization strategy
  • Drive integration of AI/ML and generative AI capabilities into existing sales domain applications
  • Collaborate with innovation and data teams to operationalize AI solutions into production-grade systems
  • Provide technical leadership across a portfolio of sales-related applications
  • Guide architectural decisions around API design, event-driven systems, and distributed microservices
  • Mentor and upskill developers in: Cloud-native design patterns, Microservices architecture, AI service integration, Python service interoperability
  • Conduct code reviews and promote high standards for maintainability, testability, and documentation
  • Partner with Product Owners, Architects, DevOps, and QA to deliver high-quality solutions
  • Champion CI/CD, DevSecOps, and modern SDLC best practices
What we offer
What we offer
  • Flexible Working Schedules
  • Wellbeing Programs
  • Learning Opportunities
  • Community Engagement
  • Paid Parental Leave
  • Pet Insurance
  • Healthcare coverage
  • 401(k)
  • Tuition reimbursement
  • Vacation, sick, and holiday pay
  • Fulltime
Read More
Arrow Right

Senior Software Developer - Cloud Security

Join 3Shape as a Senior Software Developer - Cloud Security! If you are an exper...
Location
Location
Denmark , Copenhagen
Salary
Salary:
Not provided
3shape.com Logo
3Shape
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Senior-level Software development competences
  • C# and/or C++
  • Proven hands-on experience with cloud security engineering, including container, Kubernetes, IaC and CI/CD security
  • Proven hands-on experience with building secure large cloud systems
  • You know what OWASP Top 10 risks are, and you have prevented (some of) them in code
  • You have in practical terms secured an API
  • You know and always use secure coding patterns
  • Experience with IaC and DevSecOps, including tool chains and security scanning pipelines
  • Threat modeling and architecture translation, turning vague security expectations into practical actionable guidelines for developers
  • Familiarity with Azure operational and governance tools, e.g. Azure Advisor Security
Job Responsibility
Job Responsibility
  • Applying secure coding patterns
  • advocating tools for detecting vulnerabilities
  • providing guidelines on fixing vulnerabilities
  • advocating security-related activities such as cloud penetration testing
  • sharing proven experience with building secure web and cloud applications with both teams and across the stream
  • picking up tasks from the prioritized backlog and working as a generally capable and engaged team member
  • weighing in with a security focus in architecture, design and code reviews
  • gathering learnings and finding potentially missing parts of good security practices in the team
  • proactively propagating good security practices to developers, testers and the architect in the team
  • motivating and propagating these practices to other teams through the stream architect community
What we offer
What we offer
  • Strong focus on professional and personal development – and budget to back it
  • Empowerment and challenging tasks in a successful MedTech company with cutting edge technology
  • An inspiring international and informal environment with committed and highly skilled colleagues – we are more than 30 nationalities in our building
  • Attractive office in the center of Copenhagen, next to Kongens Nytorv metro station
  • Healthcare package to keep you fit and well, and fresh and delicious lunch cooked by our private chef
  • Work on solutions used by thousands of dental professionals worldwide
  • Fulltime
Read More
Arrow Right