SecDevOps Engineer

IT

Job Number: 18382

Location: Acton Support Centre (123)

Contract: Full Time / Permanent

Description

SecDevOps Engineer

The ever-changing retail market with omnichannel capabilities driven by evolving technologies and interactive customer-focused applications is an attractive target for attackers. In response, we are expanding our Digital Defence Centre (InfoSec) and looking for a SecDevOps Engineer to work with project and operational teams to ensure security is implemented in projects and embedded in operations.

 

Responsibilities:

  • Support security and risk management reporting and risk related actions and follow up
  • Review design and architectural design documentation and data flow diagrams and provide security requirements and input
  • Support IT and Business transformation projects by ensuring they are risk-assessed and controls and security requirements are met through the transformation lifecycle, including compliance requirements such as ISO 27001 and PCI-DSS
  • Scope, arrange and support security testing, including penetration testing
  • Develop information security processes and procedures alongside business and IT stakeholders and its embedding
  • Attend business governance meetings as required representing the Information Security team

 

Skills & Experience:

Essential:

  • 5+ years’ experience in Cloud Computing (AWS, GCP or Azure) with knowledge of Kubernetes, Openshift, Cloud Foundry, and/or configuration management.
  • Comfortable with a mix of Windows and Linux systems
  • DevOps / SRE mentality and experience with the working practices.
  • Worked with CI & CD toolsets such as Jenkins, gitlab-ci, drone or concourse-ci
  • Experience in Security Governance and Security Assurance;
  • Excellent analytical skills and ability to solve complex problems;
  • Excellent communication skills and the ability to clearly and concisely articulate information security risks to business and technical teams;
  • Ability to influence security good practice behaviours within large teams;

 

Desired:

  • Bachelors or master’s degree in computer science, information technology, information security or a related field;
  • Intermediate Software Engineer preferably with experience in of one of the following PHP, NodeJS, Java or Bash
  • ISF SOGP, PCI-DSS and Data Protection; and
  • Previously worked within a large, multinational retail organization, preferably within digital transformations;

 

Dixons Carphone is Europe’s number one electrical and telecommunications retailer and services company, with more than 40,000 colleagues across nine countries, including the UK and Ireland. Every day, we use our people’s expertise to reach out and help new customers. What’s more - we’re exploring extraordinary new markets, from wellness to security, so that in an ever more connected and constantly changing world, we can offer our customers the most comprehensive service.

It’s an exciting time to join us and find yourself a place in our growing success story, apply now.