DevSecOps Security

Good to have:

Professional certifications such as CISSP, CISM, CCSK, CCSP, or equivalent.

Hands-on knowledge of cloud security (AWS, Azure, GCP) and container orchestration platforms (e.g., Kubernetes).

Experience in international and diverse environments, with exposure to regulatory engagement.

Familiarity with engineering excellence practices such as SLSA, supply chain security, SBOM, or secure developer tooling initiatives.

What you will bring to the role:

To be successful in this role you should have proven experience within the Technology sector with

knowledge of the following skills:

Proven expertise in Cybersecurity within large-scale, regulated financial institutions or

similarly complex environments.

Deep technical knowledge of engineering platforms, including CI/CD systems, build tools,

artifact repositories, runtime environments, and developer tooling.

Strong experience with DevSecOps practices, including secure pipeline design, integration

of security scanning tools, and automation of security controls.

Strong knowledge and understanding of service mesh, cryptography, network security,

application security, vulnerability management, and risk management.

Demonstrable ability to conduct threat modelling, platform security assessments, and

gap analysis.

Experience building and implementing maturity models, frameworks, or roadmaps in

complex enterprise environments.

Strong stakeholder management skills, with the ability to influence senior leadership and

drive change across federated technology teams.

Excellent communication skills, with the ability to translate technical risk into business

impact.