DevSecOps Engineer
London, England, United Kingdom
Boohoo Group
Shop boohoo's range of women's and men's clothing for the latest fashion pieces you need to be adding-to-basket, with 100s of new styles landing every day!The role
We have an exciting opportunity for an experienced DevSecOps Engineer to join our Boohoo Information Security team. Are you passionate about Information Security and DevOps? Do you thrive to work in a fast paced, vibrant environment? If so, then we would love to hear from you!
Your team
We started out as one brand with only three team members in 2006, today we are now made up of 13 amazing brands and counting, we have offices all over the world and we've grown to a 6,000+ strong team we call our boohoo family - and we don’t plan on stopping yet. We have big ambitions, huge potential and a clear strategy to continually evolve and grow the business. It’s a seriously exciting time to join us and influence the next chapter of our success.
In Tech, we’re proud to support every brand and every function. We’re a digital-first company that is totally cloud-native. We embrace change and future-proof the business, delivering critical customer-facing and internal stakeholder facing systems. Everything from colleague tech to front-end websites and apps, buying and merchandising tooling and all that’s in-between, we take care of it. Our ideas support and drive the Group’s agenda.
In Information Security, we are a true group function operating across all brands. We are a young, vibrant team with multiple disciplines in Ops, GRC and Project Management. We have a clear strategy to drive our information security initiatives, with strong governance, resources and support from the executive board. This role will be an important part of that mission.
What you'll be doing
As a DevSecOps engineer, you will be responsible for the DevSecOps areas of Vulnerability Management, Patch Management, CI/CD pipeline security, Secure Configuration, SSDLC and Security Monitoring; alongside other daily Security and Compliance efforts. Additionally, you will assist in helping developers employ robust deployment tools and processes, to protect our cloud environments.
More about you
- Ability to review and analyse vulnerability data to identify security risks to the organization's network, infrastructure, and applications within the cloud and determine any reported vulnerabilities that are false positives
- Comprehension in the security areas of SSDLC, Secure Configuration, Encryption, Penetration Testing, Vulnerability Management, Patch Management (SCCM/Intune), Cloud Security Posture Management, Security Monitoring tools
- Experience configuring, implementing and leveraging computer security and networking diagnostic/monitoring tools
- Ability to work with APIs and Plugins to integrate security tools into established CI/CD pipeline
- Amazon AWS Policy, Configuration, and Security Management tools
- Experience working with Developers, DevOps, and IT teams in a dynamic environment to promote & implement the DevSecOps culture throughout the boohoo family
- API Security, Container Security, AWS Cloud Security
- Security/Professional certifications desirable (CISSP, CCSP, CISM, CISA etc…)
- Experience with security automation and machine learning desirable
- Practical DevOps/Coding experience desirable
Why join us
We’ve set our sights on dominating the global e-commerce fashion market, and because we’re 13 brands (and counting), there are plenty of opportunities to grow your career. Our mission is to create a workplace where everyone is respected, their individual differences are valued, and they can be themselves at work without exception.
- You’ll get the opportunity to take part in our various share schemes
- Core hours enable you to flex your working times around your needs on an ad hoc basis
- Benefits that support your health and wellbeing
- There’s up to 40% discount off our all of our brands
- Our social calendar? Next level
- With HQs in Manchester and London and offices across the globe (some are dog friendly!), we offer a buzzing atmosphere and the boohoo family culture wherever you work!!
#LI-BC1 #LI-HYBRID
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Automation AWS CCSP CI/CD CISA CISM CISSP Cloud Compliance DevOps DevSecOps E-commerce Encryption Governance Machine Learning Monitoring Pentesting Strategy Vulnerabilities Vulnerability management
Perks/benefits: Career development Health care Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs