Job Description
DevSecOps Engineer
Department: Product & Technology
Employment Type: Full Time
Location: London
As a DevSecOps Engineer at Centellic, your primary responsibility is to ensure the security of our cloud‑hosted infrastructure, applications, and CI/CD pipelines. You will embed security best practices throughout the software delivery lifecycle, enabling development and cloud engineering teams to build, deploy, and operate secure, scalable, and resilient systems.
You will work across our infrastructure landscape—Azure Kubernetes Services (AKS), Azure Virtual Machines, networking components, and application workloads—to ensure systems are protected from vulnerabilities, misconfigurations, and emerging threats. You’ll champion secure‑by‑design principles, automate security controls, and maintain strong monitoring and incident response practices.
The role requires close collaboration with Developers, Cloud Engineers, Product Managers, and external suppliers. You will also contribute to the continuous improvement of LBR’s cloud security posture, proactively identifying risks, recommending enhancements, and promoting a strong DevSecOps culture.
Key Responsibilities
Team & Collaboration
- Work closely with Development, Cloud Engineering, and Product teams to embed security into cloud and application architectures.
- Provide guidance on secure design patterns and technical security recommendations.
- Support colleagues in understanding secure engineering principles and emerging threats.
Secure Implementation & Automation
- Enhance and maintain secure IaC using Terraform, ensuring compliance with internal policies and standards.
- Embed automated security checks into Azure DevOps CI/CD pipelines, including static analysis, dependency scanning, and IaC scanning.
- Ensure Kubernetes workloads follow best practices: RBAC, network policies, secrets management, image security, and ingress protections.
- Support secure configuration of Azure VMs hosting legacy or specialised products.
Vulnerability Management
- Operate and enhance container vulnerability scanning
- Monitor CVEs relevant to Centellic’s stack and coordinate remediation activities with engineering teams.
- Perform regular reviews of Terraform modules, container images, Helm charts, and AKS configurations to identify misconfigurations and risks.
Monitoring, Detection & Incident Response
- Work with monitoring tooling (e.g., Datadog or Azure Monitor) to detect anomalous or suspicious activity.
- Maintain alerting rules, dashboards, and security signals supporting rapid detection and response.
- Participate in incident response alongside the Principal Developer, Cloud Engineer and developers, including root‑cause analysis and post‑incident improvements.
- Contribute to 24/7 support rotations where required.
Security Governance & Compliance
- Ensure infrastructure and deployments adhere to LBR policies, including identity management, least privilege, encryption, and network security requirements.
- Maintain and improve secrets management using Azure Key Vault and Kubernetes secrets best practices.
- Support audits, documentation requirements, and risk assessments.
Innovation & Continuous Improvement
- Stay current with cloud‑security trends, threats, tools, and techniques.
- Recommend and trial new technologies to enhance security, governance, automation, and efficiency.
- Proactively identify opportunities to strengthen security posture across AKS, VM workloads, network layers, and CI/CD processes.
Skills Knowledge and Expertise
Core Competencies
- Strong ability to diagnose and resolve complex cloud and security issues across infrastructure, applications, and DevOps tooling.
- Ability to translate security requirements into practical engineering tasks.
- Clear communicator able to explain security concepts to non‑security stakeholders.
- Works calmly under pressure with strong time‑management skills.
- Curious, proactive, and able to independently identify improvements.
Technical Expertise
- Security best practices for Azure, including networking, RBAC, managed identities, logging, and monitoring.
- Kubernetes security: network policies, PodSecurityStandards, RBAC, image security, secrets, ingress security, and high‑availability configurations.
- Terraform and Terraform‑security concepts (policies, modules, scanning tools).
- Azure DevOps CI/CD, including YAML pipelines, secure build pipelines, artifact management, and release governance.
- Container technologies: container hardening, image optimisation, multi‑stage builds, secure base image selection.
- Trivy (or similar), dependency scanning, and SAST/DAST tools.
- Scripting with Python, Bash, or PowerShell for automation.
- Git and branching strategies with a security‑focused approach.
- Knowledge of WAF, API security, OWASP Top 10, and common cloud‑security frameworks.
- WAF rules management, including creation, tuning, and monitoring.
- SSL/TLS configuration best practices, certificate lifecycle management.
- Experience with Cloudflare security features including WAF, SSL, and Zero Trust options.
About Centellic
Centellic stands at the center of the markets it serves, empowering organizations with indispensable data and insight to make critical decisions on growth, risk and opportunity.
Through proprietary data, deep market expertise and AI-enabled technology, our platforms are embedded in client workflows. That capability is underpinned by our events, which bring the market together to share perspective and deepen understanding of the issues shaping each sector. Together, they give organizations earlier visibility of emerging trends, and the clarity and confidence to act when decisions matter.
At Centellic, we’re a global intelligence and information services business, setting the standard for how critical business decisions are made.
Why Centellic?
At Centellic, we help our clients make better decisions, and our people are at the heart of that work. Every individual plays an important role in this, bringing curiosity and high standards to everything they do.
Those who thrive here take ownership, care deeply about their work and are committed to excellence. Standards are high because our people set them that way. And while we have decades of expertise, we are still growing, pushing and building something extraordinary.
Centellic’s advantage is our people and the culture we’ve created together. It’s an environment where individuality is encouraged, relationships are genuine, and there’s a strong sense of purpose in what we’re building together. Collaborative, respectful and driven, we take our work seriously without taking ourselves too seriously.
Benefits
Our people are our most valuable asset, as such, we offer a wide range of benefits to help ensure that all are supported:
Start of employment:
- Eye care
- Employee Assistance Programme
- A day off for your birthday
After 3 months employment:
- Pension (4% employer contribution and 4% employee contribution)
After 4 months employment:
After probation:
- Cycle to work scheme
- Season ticket loan
- £350 annual wellbeing allowance to contribute to gym memberships or fitness classes
- Puregym access
- Perks at work platform access
After 1 year service:
Additional Perks:
- Company socials
- Access to Employee Affinity Networks
- Mentoring scheme
- Volunteering Day
- Mortgage Advice
- Work from anywhere (2 weeks)
- Generous parental leave
We are committed to making our organisation an inclusive, respectful & engaging place to work with a culture shaped by our core values that promote equality, collaboration & respect in everything we do. We are proud to be part of the Disability Confident Scheme, meaning we are committed to being inclusive and accessible, which starts with our application and recruitment process. If you do require any reasonable adjustments to be made, please let us know as part of our application page.
‘We are proud to be an equal opportunities employer and are committed to ensuring that all candidates are given the same opportunity to succeed regardless of their sex, gender identity/expression or reassignment, sexual orientation, marital status, race, colour, nationality, ethnic or national origin, religion, age or disability.’
