Accessability Links

Security DevOps Specialist

  • Location: Derbyshire
  • Salary: Up to £0.00 per annum
  • Job type: Contract
  • Sector: IT & Information Security
This vacancy has now expired.

Security DevOps Specialist
Location: Flexible/Remote
Rate: £Negotiable

Role Overview

Workspace Agility is the evolution of the traditional IT desktop managed service and gives users the convenience and efficiency of self-service, identity management and interactive support. It is an opportunity to empower teams within the organisation by giving users secure access to all the applications and data they need from any device and location, optimises performance and supports collaborative practices. This can all result in a more innovative, motivated and productive workforce.

The Security DevOps Specialist is a hands-on role, responsible for championing, designing and implementing best practices, policies, controls and solutions as a key component of the Workspace Agility service.


The main responsibilities are detailed below, although the post holder would also be expected to perform any other duties which might reasonably be required by the business.

  • Designing, developing, and implementing DevSecOps policies, standards, controls and procedures - ensuring security best practices are applied.
  • Defining policy for the security of CICD pipelines.
  • Designing, developing, and implementing the automation of security and compliance capabilities via CICD, in support of DevOps processes.
  • Applying Security-as-Code principles.
  • Implementing security features, logging, alerting and monitoring solutions.
  • Performing security and risk assessments including remediations if required.
  • Architecting and designing API Security.
  • Providing security guidance and support to the wider DevOps Team.
  • Evaluate, recommend and support the implementation of effective security code use and management.
  • Contribute to the product roadmap for security.


  • Strong Development background, with the ability to articulate security principles and standards across stakeholder levels.
  • Wide ranging security knowledge across the technologies which underpin Workspace Agility services, especially Microsoft 365 Enterprise Modern Workplace technologies including Modern Desktop (Windows 10, Office 365 Pro Plus, Servicing), Enterprise Mobility and Security (Device Management / MDMD / MAM with ConfigMgr and Intune, Conditional Access, Identity and Access with Azure AD and Hybrid Identity with AD DS, Security using ATP, AIP, CAS etc,) and Office365.
  • An excellent understanding of how Modern Workplace technologies integrate with wider customer IT landscapes, key pre-requisites and concepts with proven experience working with such technologies (e.g. Networks, AD DS, ConfigMgr).
  • Experience in large-scale migration projects from traditional PCLM services to Modern Workplace services.
  • Expert knowledge and experience of Azure Cloud Security including logging and monitoring tools
  • Experience in cloud security services architecture, designs, development, testing and deployment
  • Experience implementing security controls in an enterprise IT environment.
  • Experience in providing Azure cloud security assessments
  • Experience in hardening Azure applications
  • Experience in cloud vulnerability assessment, risk mitigation and audits
  • Azure ARM tooling, Azure PowerShell, Azure DSC, Azure Log Analytics
  • Advanced programming skills for PowerShell and JSON
  • Advanced knowledge in Azure Security Centre monitoring and configuration
  • Experience with the Microsoft Operations Management Suite
  • Experience with Azure DevOps
  • Experience with automated testing
  • Strong knowledge of Azure Active Directory (AAD)
  • Experience in Azure cloud secure automation
  • Experience with Microsoft Graph Security API and JSON
  • Solid understanding of Microsoft cloud security, tools, techniques and delivery.
  • Experience in building and securing CICD pipelines.
  • Experience in building and deploying secure automations via code.
  • Experience in building and deploying API security (including Microsoft Graph Security API)
  • Experience designing and implementing encryption solutions such as PKI and encryption at rest technologies.
  • Strong experience with a broad range of security technologies.
  • Advanced knowledge of identity management and RBAC.
  • Advanced knowledge of InfoSec frameworks from the CSA, NIST, NCSC, CSCC, ISO27001
  • Experience working in a DevOps environment
  • Experience of tools such as Azure DevOps / VSTS
  • Experienced working with Agile/Scrum methodologies
  • Broad knowledge of modern web technologies and security
  • Strong security development/consultancy experience.
  • Demonstrates technical prowess.
  • Good understanding of technology trends.
  • Security vision.


  • Ability to communicate clearly and with authority to senior technical and non- technical stakeholders.
  • Ability to translate security requirements into technical and service architecture requirements.
  • Ability to design and implement Azure security solutions.
  • Ability to create and implement governance controls.
  • Ability to quickly comprehend the functions and capabilities of new technologies.
  • Ability to mentor and coach.
  • Exceptional interpersonal skills.
  • Excellent written and oral communications skills.
  • Strong leadership skills.
  • Strong analytical and technical skills.
  • Strong planning and organisational skills.
  • Demonstrable time management skills, good people management and organisational skills.

Personal Attributes

  • Proactive - identifies security concerns and makes recommendations.
  • Builds rapport & trust.
  • Excellent team player and team builder.
  • Persuades & communicates effectively.
  • Entrepreneurial and creative.
  • Practical and pragmatic.
  • Empathetic and approachable.
  • Committed, dedicated, passionate.

Capita IT Resourcing is acting as an Employment Business in relation to this vacancy.

Start your search again

Back to Top