Job Title: DevSecOps Engineer

Location: Bristol-based, ideally 2–3 days on-site per week, with some flexibility depending on circumstances.

Salary: £DOE + 10% bonus

Security: Must be eligible for SC Clearance (British citizen or UK resident for last 5 years)

 

We’re hiring a DevSecOps Engineer to help redefine how secure software is built and delivered in a modern engineering environment.

 

This role goes beyond traditional pipeline security, you’ll be shaping secure CI/CD practices in a world increasingly influenced by AI-assisted development. From safeguarding code generation workflows to strengthening the software supply chain, you’ll play a key role in ensuring that speed and security scale together.

 

You’ll work closely with engineering teams to design and implement secure, automated pipelines across cloud environments, embedding security controls that are both effective and developer-friendly.

 

What You’ll Be Doing

• Design, build, and evolve secure CI/CD pipelines across product and application teams
• Embed security controls directly into build and deployment workflows (SAST, dependency scanning, secrets management, etc.)
• Secure AI-assisted development workflows, including validating generated code and managing inputs/outputs
• Define guardrails for safe and responsible use of AI within engineering processes
• Identify and mitigate risks linked to AI-generated code (e.g. insecure patterns, prompt injection, data leakage)
• Ensure secure handling of credentials, secrets, and build artefacts across the pipeline lifecycle
• Integrate and optimise security tooling to enable early, automated vulnerability detection
• Strengthen the security of the software supply chain, including dependencies and build provenance
• Support secure configuration of cloud-based development and build environments
• Partner with engineers to drive adoption of secure, scalable build and release practices
• Establish and enforce baseline security standards across pipelines and workflows
• Continuously improve automation, resilience, and security across engineering systems

 

What We’re Looking For

• Experience in a DevSecOps or security-focused engineering role, with hands-on ownership of CI/CD pipelines
• Strong understanding of secure software delivery and DevSecOps principles
• Experience with modern CI/CD platforms (e.g. GitHub Actions, GitLab CI, Bitbucket Pipelines, Azure DevOps)
• Practical knowledge of embedding security tooling into pipelines (SAST, SCA, secrets scanning, etc.)
• Understanding of software supply chain risks and how to mitigate them
• Experience working in cloud environments (AWS, Azure, or GCP) with a security-first mindset
• Awareness of security challenges in AI-assisted development (e.g. prompt injection, unsafe code generation, data exposure)
• Scripting or programming experience (e.g. Python, Bash, or similar)
• Strong problem-solving skills and attention to detail

 

Nice to have:

• Experience with containers and orchestration (Docker, Kubernetes)
• Exposure to AI/ML tools used in development workflows

 

Why This Role

This is an opportunity to work at the forefront of modern DevSecOps, securing not just pipelines, but the next generation of AI-influenced software development.

 

You’ll have the autonomy to shape best practices, influence engineering culture, and build scalable, secure systems that enable teams to move fast without introducing risk.