Description
DevSecOps Consultant - Inside IR35 - Remote - London - Birmingham - £ per day - SC Clearance - 3-6 months contract - Start ASAP
My client are actively looking for a SC Cleared Lead DevSecOps Consultant for an initial 3-6 month contract opportunity to start ASAP.
Role: DevSecOps Consultant
IR35 Status: Inside IR35
Rate: Up to £650 per day
Location: Remote/London/Birmingham - travel required up to 6x per month
Duration: Initial 3-4 Months
Clearance: Current SC Clearance, but clearance within last 12 months will be considered
Our client are actively recruiting for an SC Cleared Lead DevSecOps Consultant to work with new and existing clients across various sectors to define and implement security architectures and solutions that match the clients needs. You'll work in partnership with clients to ensure the delivery of expert services by complementing inhouse Information and Cyber Security resources along with combining expertise in information security, testing, automation and business advice.
As a DevSecOps subject matter expert, you'll be required to have hands on experience using both open and closed source tooling and be responsible for the automation of testing within our client's CI/CD pipeline. Working across the business and multiple technology platforms, you will play a key role in ensuring our clients maximise the use of their existing technology ensuring the protection of their assets and transformation of their security architecture and approach to testing.
Role Requirements:
- You'll be a Security Consultant with extensive experience of providing technical leadership within a software engineering environment.
- Solid experience in automated testing processes across large and complex environments with demanding functional and non-functional requirements and good knowledge of software testing in both so software development and penetration testing.
- You have a good understanding of the application of security within the CICD environment.
- You have practical experience working with NIST, OWASP top 10, Safecode, CIS top 20, NCSC Security policy Standards, ISO/IEC 27001.
- You have experience working with Tooling eg OWASP ZAPP, SNYK and Fortify.
- Possess awareness and understanding of HMG and NCSC Security policies, standards and guidance.
Desirable
- Have knowledge and awareness of the following:
- CISSP
- TOGAF
- Agile Project Methodology
- Awareness of appropriate software development languages eg Terraform, Ansible, Python, Java, Node.js
- ISO