DevSecOps (Cyber)

Posted 9 Days Ago
Be an Early Applicant
3 Locations
Mid level
Information Technology • Social Impact
The Role
The DevSecOps role involves developing, managing, and securing infrastructure for platforms and applications. The candidate will automate processes, implement Infrastructure as Code, ensure compliance with cybersecurity standards, and collaborate with teams across the organization. Responsibilities include project planning, code review, risk management, and integrating security features into software development.
Summary Generated by Built In

Description


Methods Business and Digital Technology Limited

Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people-centred, safe, and designed for the future.

Our human touch sets us apart from other consultancies, system integrators and software houses - with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet.

We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them.

Predominantly focused on the public-sector, Methods is now building a significant private sector client portfolio.

Methods was acquired by the Alten Group in early 2022.

Requirements
  • Requirements
    • The development, management and supporting of the infrastructure that underpins the platforms, applications, anddata which support the business..
    • Automating where possible to facilitate the rapid delivery of approved capabilities to their respective environments in a secure manner..
    • Must have good experience in developing Infrastructure as Code to automate the creation of infrastructure from development all the way to production.
    • Should be passionate about improving ways of working and best practices by understanding the customer and the market trends.
    • Understanding the needs of stakeholders and conveying this to the target audience.
    • Testing and examining code written by others and providing an approval as part of the governance and review process.
    • Ensuring that systems are safe and secure against cybersecurity threats when developing by keeping in mind that the systems must be secure by design.
    • Familiar with the NCSC secure design principles.
    • Familiar with managing the security of platforms whether they’re on cloud or on-premises, including administration of secrets, tokens, and certificates.
    • Working with the team (business, architecture, engineers, security, data) to ensure that development and delivery follows established processes and works as intended.
    • Planning out projects and being involved in project management decisions.
    • Responsible for the design, security, and maintenance of on-prem/cloud infrastructure.
    • Making and guiding effective decisions, explaining clearly how the decision has been reached with the ability to understand and resolve technical disputes across varying levels of complexity and risk.
    • Communicating effectively across organisational, technical, and political boundaries to understand the context and how to make complex and technical information and language simple and accessible for non-technical audiences.
    • Understanding of how to expose data from systems (for example through APIs), link data from multiple systems, and deliver streaming services.
    • Ensuring that risks associated with deployment are adequately understood and documented.
    • Integrating security features in the software development life cycle.
    • Identification and probable security risks, with their mitigating strategies.
    • Implementation of security controls.
    • Monitoring the infrastructure and the threat to security.
    • Ensuring regulatory compliances for standards of security.
    • Early detection of security vulnerabilities
    • Faster deployment of secure software
    • By following better compliance with security standards and regulations
    • Greater visibility into security risks and threats
    • Have experience or familiarity with working in an agile delivery methodology 
  • Ideal Candidates will demonstrate:
    • Experience working with many teams especially security would be beneficial.
    • Solid infrastructure design experience for on-prem environments to implement or migrate applications and databases.
    • Have experience with hybrid designs between on-premise and cloud
    • Solid experience in a range of technologies and be able to make assessments as to what is best to be used for the projects and the organisation. As well as suggest and develop innovative approaches within constrained projects and environments.
    • Strong experience in software development change/release management processes and technical governance to fully understand the typical lifecycle and maintenance of live systems.
    • Ability to work with containerization platforms such as Kubernetes, PKS, Docker; provisioning software including Ansible, Terraform, YAML; and application/infrastructure/data performance analysis and monitoring.
    • Experience of functional and non-functional testing.
    • Experience with automated deployment of applications, databases and infrastructure.
    • Understanding of the government digital service (GDS) manual and standards across Discovery/Alpha/Beta/Live phases.
    • Understanding of SaaS, PaaS, IaaS technologies, and the implications of their use compared with bespoke development.
    • Being able to provide training, support, and mentoring to the wider business.
    • Knowledge of how to ensure that risks associated with deployment are adequately understood and documented.
  • Desirable Skills & Experience:
    • Worked as part of a system support team managing live systems and triaging & resolving incidents to resolution, including management of known defects and issues.
    • Worked as part of a multi-disciplinary project team.
    • Experience with Terraform and YAML to deploy on-prem/cloud infrastructure.
    • Experience with automation tools to build and deploy containerized applications.
    • Experience implementing effective instrumentation to monitor applications.
    • Experience implementing SAST and DAST tooling in deployment pipelines like Trivvy and SonarQube.
    • Experience with on-prem DevOps tooling.

This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected . Details of this will be discussed with you at interview. 

Benefits

Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy.

By joining us you can expect

  • Autonomy to develop and grow your skills and experience
  • Be part of exciting project work that is making a difference in society
  • Strong, inspiring and thought-provoking leadership
  • A supportive and collaborative environment

Development – access to LinkedIn Learning, a management development programme, and training

Wellness – 24/7 confidential employee assistance programme

Flexible Working – including home working and part time

Social – office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes

Time Off – 25 days of annual leave a year, plus bank holidays, with the option to buy 5 extra days each year

Volunteering – 2 paid days per year to volunteer in our local communities or within a charity organisation

Pension – Salary Exchange Scheme with 4% employer contribution and 5% employee contribution

Discretionary Company Bonus – based on company and individual performance

Life Assurance – of 4 times base salary

Private Medical Insurance – which is non-contributory (spouse and dependants included)

Worldwide Travel Insurance – which is non-contributory (spouse and dependants included)

Enhanced Maternity and Paternity Pay

Travel – season ticket loan, cycle to work scheme

For a full list of benefits please visit our website ()

Top Skills

Infrastructure As Code
The Company
HQ: London
552 Employees
On-site Workplace
Year Founded: 1992

What We Do

Methods is the leading digital transformation partner for the UK public sector. We care deeply about making our public services better and have been doing this for 28 years.

Methods partners with a range of central government departments and agencies to transform the way public sector operates in the UK. Our mission is to help safeguard public-facing services and apply digital thinking to make sure the future of our public services is centred around citizens.

Committed to having social impact, we enjoy an enviable track record of delivering real savings and benefits. We do this by helping you move from vertically integrated legacy infrastructure to a platform business model – allowing you to keep infrastructure costs low and focus on doing what you do best i.e. delivering front-end services.

With Methods, you access a range of specialist skills and industry expertise to transform your organisation for the digital age, break free of expensive suppliers, and take control of your customer relationships and operating model.

Further information on Methods Group can be found at www.methods.co.uk.

Similar Jobs

Methods Logo Methods

DevSecOps (contract) - Cyber

Information Technology • Social Impact
5 Locations
552 Employees

WISE Logo WISE

Senior Application Security Engineer

Fintech • Mobile • Payments • Software • Financial Services
Hybrid
London, Greater London, England, GBR
6000 Employees

ServiceNow Logo ServiceNow

Senior Technical Consultant - Customer Workflows

Artificial Intelligence • Cloud • HR Tech • Information Technology • Productivity • Software • Automation
Hybrid
Staines, Surrey, England, GBR
26000 Employees

SharkNinja Logo SharkNinja

eCommerce IT Operations Coordinator

Beauty • Robotics • Design • Appliances • Manufacturing
Easy Apply
London, Greater London, England, GBR
3600 Employees

Similar Companies Hiring

ReUp Education Thumbnail
Social Impact • Edtech
Austin, TX
145 Employees
Jobba Trade Technologies, Inc. Thumbnail
Software • Professional Services • Productivity • Information Technology • Cloud
Chicago, IL
45 Employees
InCommodities Thumbnail
Renewable Energy • Machine Learning • Information Technology • Energy • Automation • Analytics
Austin, TX
234 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account