DevSecsOps Engineer

About CFP Energy:

Our mission is to facilitate the transition to a low-carbon economy by providing innovative financial solutions to our clients.

We are not just any energy and sustainability group; we're a dynamic, award-winning powerhouse! At the forefront of environmental innovation, we provide cutting-edge solutions for large-scale energy consumers. We do everything from guiding small businesses to corporate giants on their journey to achieve net zero emissions to expertly managing risks and supplying vital power and gas resources. But wait, there's more! We're not content with excelling in our current ventures - we thrive on pioneering new businesses and seizing energy investment opportunities.

About the role:

We are looking for a highly capable and experienced DevSecOps engineer to join a growing function within the business. The engineer will focus on infrastructure, automation, security practices, and providing tooling solutions to streamline the path to live for development teams.

Our ideal candidate will be passionate about best practices within technology teams, fully supportive of what the group is doing and who wishes to make a difference.

Responsibilities:

• Drive shift left security culture uptake by assisting with security training friendly phishing campaigns as well as conducting brown bag sessions with all staff.

• Support and secure our existing CI/CD pipelines and assist with migration from monoliths to microservices.

• Experience with containerisation and maintaining, optimising, and securing Azure Kubernetes Clusters.

• Drive alerting and monitoring solutions to provide teams with better optics of the live application ecosystem, using tools such as Grafana, Prometheus, Loki, or ELK.

• Demonstrating a solid understanding of the SDLC and other continuous delivery frameworks and methodologies, such as SCRUM and Kanban.

• Utilise configuration management tools and Infrastructure tools such as Terraform, Ansible, Chef or Pulumi.

• Proven expertise in secrets management software and processes, using tools like Hashicorp Vault or Azure Key Vault.

• Adhere to agile methodologies and Kanban processes and have a coaching mindset with the ability to understand and adapt to diverse cultures and hierarchies.

• An ability to drive innovation by discovering new technologies, reviewing tooling, and making suggestions on improving our current stack and architecture.

• Drive the change you seek and be an autonomous, proactive, confident, credible, and persuasive team player.

• Collaborate and support developers, analysts, and data scientists to continually improve and innovate.

• Have a practical understanding of firewall networking, ingress, VPNs, and DNS to ensure seamless integration and communication within the infrastructure estate.

Ideal Candidate:

• Bachelor's degree in computer science or similar.
• Relevant Cloud Certifications (Azure, AWS or GCP).
• Relevant Hashicorp certifications (Terraform and Vault).
• Excellent project & product management skills.
• Excellent communication and interpersonal skills, with the ability to effectively interact with clients, team members, and stakeholders at all levels.

Experience Required:

• 3+ years of experience in DevSecOps role or security operations.

• Expertise with IaC tooling (Hashicorp Terraform)

• Expertise with token / secret management tools (Hashicorp Vault)

• Expertise with monitoring and alerting platforms, such as ELK, DataDog, Grafana, Loki, etc.

• Expertise with Docker / Kubernetes and Helm design and implementation.

• Fundamental understanding of networking, ingress, and DNS along with WAF.

• Fundamental understanding of GIT/version control and SDLC build pipelines.

• Exposure to microservices architecture and experience with API Gateways.

• Object-orientated and non-object-orientated coding is highly advantageous.

Benefits:

• 25 days annual leave in addition to Bank holidays.
• Hybrid working pattern; 3 days a week in the office and 2 days remote.
• Discretionary commission/bonus scheme.
• Company pension scheme.
• Life and medical insurance, and eyecare scheme.
• Employee Assistance Program.
• Cycle to work scheme.
• Family-friendly policies.
• Recruit and Reward scheme.
• Access to perk-box benefits package.

Join us in our mission to protect and secure critical infrastructure in an increasingly connected world. If you are a strategic thinker, a natural leader, and passionate about cybersecurity, we want to hear from you!

The CFP Group is committed to ensuring equal opportunities, fairness of treatment, dignity and respect, and the elimination of all forms of discrimination in the workplace for all employees/contractors and job applicants.