Job Description:
Read on to find out what you will need to succeed in this position, including skills, qualifications, and experience.
DevSecOps Engineer
Location: London (Hybrid)
Engagement Type: Day Rate Contract (Inside IR35)
The Assignment
This is a high-impact, tactical consulting role. Our client has security tooling in flightincluding Snyk, SonarQube, and automated pipelinesbut they need an consultant to make it land. Currently, they are battling tool noise, backlog fatigue, and pipeline friction that is stalling engineering velocity.
We need a security-first practitioner with strong advisory and consulting experience to land, build immediate trust, run a maturity assessment, and engineer a practical shift-left model that enhances developer workflows rather than blocking them.
Key Responsibilities
Maturity Assessment and Strategy: Conduct an evidence-based audit against OWASP SAMM and NIST SSDF frameworks, translating findings into a prioritised 12-mon...