DevSecOps Engineer

Posted Yesterday
Be an Early Applicant
London, Greater London, England, GBR
Hybrid
Mid level
Legal Tech • Analytics • Business Intelligence
The Role
Embed security across cloud infrastructure and CI/CD: secure IaC with Terraform, harden AKS and VMs, automate pipeline security checks, run container and dependency scanning, monitor threats, coordinate vulnerability remediation, support incident response, and improve cloud security posture through governance and automation.
Summary Generated by Built In
As a DevSecOps Engineer at Centellic, your primary responsibility is to ensure the security of our cloud‑hosted infrastructure, applications, and CI/CD pipelines. You will embed security best practices throughout the software delivery lifecycle, enabling development and cloud engineering teams to build, deploy, and operate secure, scalable, and resilient systems. 
 
 You will work across our infrastructure landscape—Azure Kubernetes Services (AKS), Azure Virtual Machines, networking components, and application workloads—to ensure systems are protected from vulnerabilities, misconfigurations, and emerging threats. You’ll champion secure‑by‑design principles, automate security controls, and maintain strong monitoring and incident response practices. 
 
 The role requires close collaboration with Developers, Cloud Engineers, Product Managers, and external suppliers. You will also contribute to the continuous improvement of LBR’s cloud security posture, proactively identifying risks, recommending enhancements, and promoting a strong DevSecOps culture.

Key Responsibilities
Team & Collaboration
  • Work closely with Development, Cloud Engineering, and Product teams to embed security into cloud and application architectures.
  • Provide guidance on secure design patterns and technical security recommendations.
  • Support colleagues in understanding secure engineering principles and emerging threats.
Secure Implementation & Automation
  • Enhance and maintain secure IaC using Terraform, ensuring compliance with internal policies and standards.
  • Embed automated security checks into Azure DevOps CI/CD pipelines, including static analysis, dependency scanning, and IaC scanning.
  • Ensure Kubernetes workloads follow best practices: RBAC, network policies, secrets management, image security, and ingress protections.
  • Support secure configuration of Azure VMs hosting legacy or specialised products.
Vulnerability Management
  • Operate and enhance container vulnerability scanning
  • Monitor CVEs relevant to Centellic’s stack and coordinate remediation activities with engineering teams. 
  • Perform regular reviews of Terraform modules, container images, Helm charts, and AKS configurations to identify misconfigurations and risks.
Monitoring, Detection & Incident Response
  • Work with monitoring tooling (e.g., Datadog or Azure Monitor) to detect anomalous or suspicious activity.
  • Maintain alerting rules, dashboards, and security signals supporting rapid detection and response.
  • Participate in incident response alongside the Principal Developer, Cloud Engineer and developers, including root‑cause analysis and post‑incident improvements.
  • Contribute to 24/7 support rotations where required.
Security Governance & Compliance
  • Ensure infrastructure and deployments adhere to LBR policies, including identity management, least privilege, encryption, and network security requirements.
  • Maintain and improve secrets management using Azure Key Vault and Kubernetes secrets best practices.
  • Support audits, documentation requirements, and risk assessments.
Innovation & Continuous Improvement
  • Stay current with cloud‑security trends, threats, tools, and techniques.
  • Recommend and trial new technologies to enhance security, governance, automation, and efficiency.
  • Proactively identify opportunities to strengthen security posture across AKS, VM workloads, network layers, and CI/CD processes.

Skills Knowledge and Expertise
Core Competencies
  • Strong ability to diagnose and resolve complex cloud and security issues across infrastructure, applications, and DevOps tooling.
  • Ability to translate security requirements into practical engineering tasks.
  • Clear communicator able to explain security concepts to non‑security stakeholders.
  • Works calmly under pressure with strong time‑management skills.
  • Curious, proactive, and able to independently identify improvements.
Technical Expertise
  • Security best practices for Azure, including networking, RBAC, managed identities, logging, and monitoring.
  • Kubernetes security: network policies, PodSecurityStandards, RBAC, image security, secrets, ingress security, and high‑availability configurations.
  • Terraform and Terraform‑security concepts (policies, modules, scanning tools).
  • Azure DevOps CI/CD, including YAML pipelines, secure build pipelines, artifact management, and release governance.
  • Container technologies: container hardening, image optimisation, multi‑stage builds, secure base image selection.
  • Trivy (or similar), dependency scanning, and SAST/DAST tools.
  • Scripting with Python, Bash, or PowerShell for automation.
  • Git and branching strategies with a security‑focused approach.
  • Knowledge of WAF, API security, OWASP Top 10, and common cloud‑security frameworks.
  • WAF rules management, including creation, tuning, and monitoring.
  • SSL/TLS configuration best practices, certificate lifecycle management.
  • Experience with Cloudflare security features including WAF, SSL, and Zero Trust options.

About Centellic
Centellic stands at the center of the markets it serves, empowering organizations with indispensable data and insight to make critical decisions on growth, risk and opportunity.

Through proprietary data, deep market expertise and AI-enabled technology, our platforms are embedded in client workflows. That capability is underpinned by our events, which bring the market together to share perspective and deepen understanding of the issues shaping each sector. Together, they give organizations earlier visibility of emerging trends, and the clarity and confidence to act when decisions matter.
At Centellic, we’re a global intelligence and information services business, setting the standard for how critical business decisions are made.
Why Centellic?
At Centellic, we help our clients make better decisions, and our people are at the heart of that work. Every individual plays an important role in this, bringing curiosity and high standards to everything they do.
Those who thrive here take ownership, care deeply about their work and are committed to excellence. Standards are high because our people set them that way. And while we have decades of expertise, we are still growing, pushing and building something extraordinary.
Centellic’s advantage is our people and the culture we’ve created together. It’s an environment where individuality is encouraged, relationships are genuine, and there’s a strong sense of purpose in what we’re building together. Collaborative, respectful and driven, we take our work seriously without taking ourselves too seriously.

Benefits
Our people are our most valuable asset, as such, we offer a wide range of benefits to help ensure that all are supported:

Start of employment:
  • Eye care
  • Employee Assistance Programme
  • A day off for your birthday
After 3 months employment:
  • Pension (4% employer contribution and 4% employee contribution)
After 4 months employment:
  • Life assurance
After probation:
  • Cycle to work scheme
  • Season ticket loan
  • £350 annual wellbeing allowance to contribute to gym memberships or fitness classes
  • Puregym access
  • Perks at work platform access
After 1 year service:
  • Private healthcare
Additional Perks:
  • Company socials 
  • Access to Employee Affinity Networks 
  • Mentoring scheme 
  • Volunteering Day 
  • Mortgage Advice
  • Work from anywhere (2 weeks)
  • Generous parental leave
We are committed to making our organisation an inclusive, respectful & engaging place to work with a culture shaped by our core values that promote equality, collaboration & respect in everything we do. We are proud to be part of the Disability Confident Scheme, meaning we are committed to being inclusive and accessible, which starts with our application and recruitment process. If you do require any reasonable adjustments to be made, please let us know as part of our application page.
‘We are proud to be an equal opportunities employer and are committed to ensuring that all candidates are given the same opportunity to succeed regardless of their sex, gender identity/expression or reassignment,  sexual orientation, marital status, race, colour, nationality, ethnic or national origin, religion, age or disability.’ 
 


About
Please visit our website for more information.

Skills Required

  • Experience securing Azure cloud services including AKS, Azure VMs, networking, RBAC and managed identities
  • Kubernetes security: PodSecurityStandards, RBAC, network policies, secrets management, image security, ingress protections
  • Terraform experience, including modules, policies and IaC scanning
  • Azure DevOps CI/CD pipelines experience (YAML pipelines, secure build/release practices)
  • Container security and vulnerability scanning (Trivy or similar) and container hardening
  • Experience with SAST/DAST and dependency scanning tools
  • Scripting for automation using Python, Bash, or PowerShell
  • Experience with monitoring and detection tooling (Datadog or Azure Monitor) and alerting/dashboards
  • Secrets management experience, especially Azure Key Vault and Kubernetes secrets best practices
  • Git and branching strategies with security-focused workflows
  • Knowledge of WAF, API security, OWASP Top 10, SSL/TLS and certificate lifecycle management
  • Experience with Cloudflare security features including WAF, SSL and Zero Trust options
  • Familiarity reviewing Terraform modules, Helm charts, container images and AKS configurations for misconfigurations
  • Ability to participate in incident response and 24/7 support rotations when required
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: London, England
530 Employees

What We Do

Law Business Research (LBR) is a technology-enabled information services business powering the global legal industry with intelligence, analytics and performance data. We are a fast-growing, innovative company with a dynamic and diverse culture, and we take great pride in delivering a world-class, cutting-edge service to our global clients. By applying the latest technology to the fast-moving legal world, we enable our users to find their competitive edge and decide with confidence, armed with the insight they need. LBR delivers trusted intelligence and insight to users around the world through a range of tools and platforms that combine proprietary data and unique analysis. We make sense of complex, fast-changing information and enhance critical decision-making. With an international team of over 500 experienced professionals, LBR has a proven track record of informing, engaging and connecting legal practitioners. Our specialist platforms help clients enhance their decision-making, manage legal risk and drive improved performance.

Similar Jobs

PlexTrac Logo PlexTrac

Devsecops Engineer

Security • Software
In-Office or Remote
London, England, GBR
92 Employees

NLPatent Logo NLPatent

Devsecops Engineer

Artificial Intelligence • Information Technology • Machine Learning • Natural Language Processing • Software
In-Office
London, Greater London, England, GBR
17 Employees

Teya Logo Teya

Devsecops Engineer

Fintech • Payments • Financial Services
In-Office
London, Greater London, England, GBR
1000 Employees

G-Research Logo G-Research

Devsecops Engineer

Big Data • Fintech • Information Technology • Machine Learning • Financial Services
In-Office
London, Greater London, England, GBR
1039 Employees

Similar Companies Hiring

Milestone Systems Thumbnail
Artificial Intelligence • Security • Software • Analytics • Big Data Analytics
Lake Oswego, OR
1500 Employees
GC AI Thumbnail
Artificial Intelligence • Legal Tech
San Mateo, California
100 Employees
Legora Thumbnail
Artificial Intelligence • Legal Tech • Software
Chicago, Illinois
700 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account