14 jobs found

Role Title: Storage Engineer - Install & Configure Duration: contract to run until 31/12/2026 Location: Sheffield, hybrid 3 days per week onsite Rate: up to 410.32 p/d Umbrella inside IR35 Role purpose / summary Our Client is seeking a skilled Storage Engineer to support the implementation of OpenShift as part of a major infrastructure migration project. This role focuses on designing, installing, and configuring enterprise-grade storage solutions that underpin OpenShift clusters across multi-cloud, hybrid, or on-prem environments. The engineer will ensure storage performance, scalability, and compliance with the bank's security and operational standards. Key Skills/ requirements Storage Design & Implementation: Design storage architecture to support OpenShift clusters and workloads. Install and configure storage systems (SAN, NAS, or cloud-based storage). Integrate storage with underlying infrastructure (VMs, networking, compute). Performance & Optimization: Ensure high availability, redundancy, and disaster recovery capabilities. Optimize storage performance for containerized workloads. Implement monitoring and alerting for storage health and capacity. Compliance & Security: Align storage configurations with the bank's security and regulatory requirements. Implement encryption, access controls, and data protection measures. Collaboration : Work closely with Infrastructure Engineers, OpenShift Administrators, and Automation Engineers. Support DevOps and application teams with storage provisioning and troubleshooting. Documentation & Governance : Maintain detailed documentation of storage configurations and processes. Ensure adherence to the bank's IT governance and change management policies. Required Skills & Qualifications: Proven experience in enterprise storage systems (e.g., NetApp, Dell EMC, IBM, or cloud storage solutions). Strong knowledge of storage protocols (iSCSI, NFS, Fibre Channel). Familiarity with OpenShift, Kubernetes, and containerized environments. Understanding of backup, replication, and disaster recovery strategies. Excellent troubleshooting and performance tuning skills. Certifications in storage technologies or cloud platforms (AWS, Azure) preferred. All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!

OpenShift Architect / SME Location: Sheffield (3 days onsite is mandatory 6 Months 501 Role Purpose: The OpenShift Architect / Subject Matter Expert (SME) will provide deep technical expertise and strategic guidance for the bank's OpenShift platform implementation. This role will support the Product Owner in defining the roadmap, ensuring architectural integrity, and driving best practices for containerization and cloud-native solutions across the enterprise. Key Responsibilities: Collaborate with the Product Owner to define and refine the OpenShift roadmap and strategic objectives. Provide architectural leadership for OpenShift deployment, configuration, and integration with the bank's technology stack. Act as the technical authority for OpenShift, Kubernetes, and related containerization technologies. Design and implement scalable, secure, and compliant OpenShift solutions aligned with the bank standards. Conduct performance tuning, capacity planning, and optimization of OpenShift clusters. Develop and enforce best practices for CI/CD pipelines, DevOps workflows, and container security. Mentor engineering teams and provide technical guidance on OpenShift usage and troubleshooting. Stay current with industry trends and emerging technologies to ensure the bank remains at the forefront of cloud-native innovation. Required Skills & Experience: Extensive hands-on experience with OpenShift (design, deployment, and administration). Strong knowledge of Kubernetes, container orchestration, and microservices architecture. Expertise in Linux, networking, and security principles for containerized environments. Familiarity with cloud platforms (AWS, Azure, GCP) and hybrid cloud strategies. Experience with CI/CD tools (Jenkins, GitLab, Tekton) and DevOps practices. Ability to define technical standards and governance for container platforms. Excellent problem-solving and stakeholder communication skills.

Role Title: IKP Build Engineer Duration: contract to run until 31/12/2026 Location: Sheffield, Hybrid 3 days per week onsite Rate: up to 495.88 p/d Umbrella inside IR35 Role purpose / summary Our client is seeking a skilled IKP Build Engineer to design, build, and implement Identity and Key Management Platform (IKP) components for the OpenShift infrastructure migration project. This role focuses on delivering secure identity and cryptographic key management solutions that integrate seamlessly with the bank's enterprise security architecture and OpenShift clusters. Key Skills/ requirements Build & Implementation: Develop and deploy IKP components to support OpenShift workloads. Configure key management systems for encryption, signing, and secure storage. Integrate IKP with the bank's identity and access management (IAM) systems. Automation & Integration: Automate key lifecycle operations (generation, rotation, revocation). Enable API-based integration between IKP and OpenShift clusters. Collaborate with DevOps and Automation Engineers to embed IKP processes in CI/CD pipelines. Security & Compliance: Ensure IKP configurations meet the bank's security standards and regulatory requirements. Implement robust authentication and authorization mechanisms. Support audits and compliance checks related to cryptographic controls. Documentation & Governance: Maintain detailed build documentation and operational runbooks. Adhere to the bank's IT governance and change management processes. Required Skills & Qualifications: Hands-on experience in building and configuring identity and key management systems. Strong knowledge of cryptographic principles, PKI, TLS/SSL, and encryption standards. Familiarity with OpenShift, Kubernetes, and container security best practices. Proficiency in automation tools (e.g., Ansible, Terraform) for IKP deployment. Experience with enterprise IAM solutions and API integration. Relevant certifications (e.g., CISSP, CISM, or cloud security certifications) preferred. All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!

Identity and Key Management SME Location: Hybrid / 60% office 40% home Duration: 31/12/2026 Rate 500 MUST BE PAYE THROUGH UMBRELLA Role Description: The bank is seeking an experienced IKP SME to provide expert guidance and implementation support for Identity and Key Management within the OpenShift infrastructure migration project. This role ensures secure identity management, encryption key lifecycle operations, and compliance with the bank's global security standards across multi-cloud, hybrid, or on-prem environments. Key Responsibilities: Identity & Key Management: Design and implement identity and key management solutions for OpenShift clusters. Manage encryption key lifecycle: generation, rotation, storage, and retirement. Ensure integration with the bank's enterprise identity and access management systems. Security & Compliance: Align all identity and key management processes with the bank's security policies and regulatory requirements. Implement robust authentication and authorization mechanisms for OpenShift workloads. Support audits and compliance checks related to cryptographic controls. Integration & Support: Collaborate with OpenShift Architects, Infrastructure Engineers, and Automation teams to embed secure identity and key management practices. Provide technical expertise for API integrations and automation of key management tasks. Documentation & Governance: Maintain detailed documentation of identity and key management configurations. Ensure adherence to the bank's IT governance and change management processes. Required Skills & Qualifications: Deep expertise in Identity and Key Management Platforms (IKP) and cryptographic key lifecycle management. Strong knowledge of PKI, TLS/SSL, and encryption standards. Familiarity with OpenShift, Kubernetes, and container security best practices. Experience with enterprise IAM solutions and integration with cloud platforms. Excellent understanding of regulatory requirements (e.g., PCI DSS, GDPR). Relevant certifications (e.g., CISSP, CISM, or cloud security certifications) preferred.

CyberArk PAM Self-Hosted Architect +6 months + +Fully remote working +SC cleared role - must be elligible for clearance Are you an experienced CyberArk Architect who can define and deliver enterprise-grade PAM and secrets-management platforms in secure, complex environments? We are seeking a highly skilled CyberArk PAM Self-Hosted Architect to take ownership of architectural strategy, design and integration across a major organisation. This role is ideal for a senior expert who thrives on shaping security platforms, influencing stakeholders, and guiding delivery teams through best-practice implementation. Responsibilities: Own the end-to-end architecture and high-level design for CyberArk PAM Self-Hosted and CyberArk Conjur, defining these as strategic platforms for privileged access and secrets management. Establish and maintain reference architectures , patterns, and standards for onboarding infrastructure, applications, DevOps platforms and third parties into CyberArk. Architect CyberArk PAM Self-Hosted components -Vault, PVWA, PSM, CPM, PSMP, PTA, DR-ensuring resilience, scalability, operational segregation and regulatory compliance. Design CyberArk Conjur / Secrets Manager Enterprise & Credential Provider for secure management of application, machine and DevOps secrets, integrating with: CI/CD pipelines Containers and Kubernetes/OpenShift Multi-cloud platforms Collaborate with security, DevOps and infrastructure teams to integrate CyberArk with AD/LDAP, SAML/OIDC identity providers, SIEM (e.g. Splunk), ITSM, and MFA solutions . Lead installation, configuration, testing and handover of CyberArk secrets-management solutions into Run & Maintain teams. Provide architectural leadership on privileged access risk reduction through threat modelling, control selection and adherence to security policies . Act as a trusted advisor to senior stakeholders (CISO, security architects, platform owners, programme leadership), translating complex PAM/secret-management designs into clear business outcomes. Required skills: Typically 7+ years' experience in cybersecurity architecture, with strong PAM expertise in complex and regulated environments. Proven hands-on architectural experience with CyberArk PAM Self-Hosted , including most of: Vault, PVWA, PSM, CPM, PSMP, PTA, DR. Strong experience designing and integrating CyberArk Conjur / Credential Provider for application and DevOps secrets. Demonstrable experience integrating CyberArk with: AD/LDAP SAML/OIDC identity providers SIEM tools ITSM/ticketing systems At least one MFA platform Solid understanding of DevOps and cloud-native ecosystems, including Kubernetes, OpenShift, containers, Jenkins, CI/CD and IaC , and embedding CyberArk Conjur into these pipelines. Strong awareness of security and audit standards (NCSC, ISO 27001, NIST, FCA/financial, government). Excellent communication and stakeholder management skills, able to articulate PAM and secrets architecture to both technical and non-technical audiences. Experience working in or with secure, classified or national security environments . Strong documentation skills (HLDs, LLDs, design patterns, architecture decisions). Proven track record leading and delivering multiple CyberArk PAM and secrets-management projects . If you'd like to discuss this CyberArk PAM Self-Hosted Architect in more detail, please send your updated CV to (url removed) and I will get in touch.

Role Title: OpenShift Sr Engineer Location: Sheffield/Hybrid (3 days per week onsite) Duration: 12 months Rate: 463 per day inside ir35 Role Description: As an OpenShift Sr Engineer you will be responsible for designing, building, and optimizing OpenShift environments to host workloads migrated from VMware. This role focuses on cluster architecture, integration with enterprise systems, automation, and ensuring high availability and security of the platform. Key Responsibilities: Design and build OpenShift cluster architectures to support VMware workload migration. Perform cluster installation, upgrades, and configuration to ensure stability and scalability. Integrate OpenShift with enterprise systems, CI/CD pipelines, and monitoring tools. Implement networking components including CNI plugins, ingress controllers, and load balancers. Configure and manage storage integration for persistent workloads. Develop automation scripts and templates for cluster provisioning and lifecycle management. Required Skills & Qualifications: Strong hands-on experience with OpenShift/Kubernetes engineering, including cluster installation and upgrades. Proficiency in Linux system administration and troubleshooting. Knowledge of networking concepts (CNI, ingress, load balancers) and storage integration. Experience with containerization technologies and orchestration best practices. Familiarity with automation tools (Ansible, Terraform) and CI/CD pipelines. If you are interested in this role or wish to apply, please feel free to submit your CV.

Job Title: Product Owner - OpenShift Implementation Location: Sheffield (3 days onsite is mandatory) 6 Months 498 Role Purpose: The Product Owner will be responsible for defining, prioritising, and managing requirements for the successful implementation of OpenShift within the bank's technology ecosystem. This role will act as the bridge between business stakeholders and technical teams, ensuring that the OpenShift platform aligns with strategic objectives and delivers value across the organization Key Responsibilities: Define and maintain the product vision and roadmap for OpenShift implementation. Gather, analyse, and prioritize business and technical requirements in collaboration with stakeholders. Translate requirements into actionable user stories and acceptance criteria for development teams. Work closely with engineering, architecture, and DevOps teams to ensure timely delivery of features. Manage the product backlog, ensuring alignment with business priorities and technical feasibility. Facilitate sprint planning, reviews, and retrospectives with Agile teams. Monitor progress, identify risks, and implement mitigation strategies. Ensure compliance with the bank's security, regulatory, and operational standards. Act as the primary point of contact for all OpenShift-related queries and decisions. Required Skills & Experience: Proven experience as a Product Owner or similar role in Agile environments. Strong understanding of containerization technologies, particularly OpenShift and Kubernetes. Familiarity with cloud platforms (AWS, Azure, GCP) and hybrid cloud strategies. Excellent stakeholder management and communication skills. Ability to translate complex technical concepts into business-friendly language. Experience with backlog management tools (e.g., Jira, Confluence). Knowledge of CI/CD pipelines and DevOps practices is a plus.

Job Title: Service Architect Contract: 6 Months (Inside IR35) Clearance: Current SC Clearance Required Location: Fully Remote Start Date: January/February 2026 Rate: 575 per day / 76.67 per hour Overview: We are seeking an experienced Service Architect to design and implement a robust service architecture across a multi-supplier ecosystem, ensuring seamless integration of ITIL processes, ticket flows, and end-to-end SLAs. This role will drive governance, service transition, and continual improvement while maintaining operational excellence within a secure environment. Key Responsibilities: Define and implement service architecture for integrated services across multiple suppliers Establish ITIL-aligned processes (Incident, Problem, Change, Release, Configuration, Request Fulfilment) Design ticket flows and ensure integration with ITSM tools (ServiceNow preferred) Set up end-to-end SLAs and OLAs, including reporting dashboards for performance tracking Lead service transition activities, including operational readiness checks and runbook creation Operate within a SIAM governance framework, conducting monthly service reviews and SLA/KPI reporting Drive continual service improvement plans to optimise processes and enhance customer experience Act as the central point of contact for service integration issues and supplier collaboration Required Skills: Strong experience in SIAM and multi-supplier environments Expertise in ITIL v4 and ITSM platforms (ServiceNow preferred) Proven ability to design service architecture, ticket flows, and SLA frameworks Excellent governance, reporting, and stakeholder management skills Current SC Clearance is mandatory Desirable: Cloud infrastructure knowledge (AWS, Openshift) Familiarity with secure/government environments Experience in contract and commercial management

Job Title: SIAM Service Manager Role Purpose: Design and implement a robust service architecture across a multi-supplier , ensuring seamless integration of ITIL processes, ticket flows, and end-to-end SLAs. This role drives governance, service transition, and continual improvement while maintaining operational excellence. The support scope will cover L3 and L4 resolver groups. L1 and L2 are out of scope. This role will develop architecture for L3 and L4 and define alignment with L1 and L2 managed by MoD. ITSM tool configuration is out of scope for the client SIAM will be owned by the client, and this role will operate within that framework. Key Responsibilities: 1. Service Architecture & Design Define and implement service architecture for integrated services. Establish ITIL-aligned processes (Incident, Problem, Change, Release, Configuration, Request Fulfilment) using IBM standard ITIL documentation adapted for Deeams requirements. Design ticket flows across suppliers and ensure integration with ITSM tools (e.g., ServiceNow). Set up end-to-end SLAs and OLAs, including reporting dashboards for performance tracking. 2. Service Transition Lead onboarding of new environments into support, including operational readiness checks, runbook creation, and supplier alignment workshops. Coordinate testing and acceptance for new or changed services. 3. Governance & Reporting Operate SIAM governance framework: Monthly service reviews with suppliers. SLA/KPI reporting and trend analysis. Risk and compliance audits. Maintain escalation paths and RACI matrices. 4. Continual Service Improvement (CSIP) Develop CSIP plans to optimise processes, improve SLA adherence, and enhance customer experience. Drive automation and efficiency improvements across ITSM workflows. 5. Stakeholder & Supplier Management Act as the central point of contact for service integration issues. Facilitate collaboration between Nordcloud, SixWorks, Cohesive, IBM, and internal teams. Provide clear reporting to senior leadership on service health and improvement initiatives. Required Skills: Strong experience in SIAM and multi-supplier environments. Expertise in ITIL v4 and ITSM platforms (ServiceNow preferred). Proven ability to design service architecture, ticket flows, and SLA frameworks. Excellent governance, reporting, and stakeholder management skills. Desirable: Cloud infrastructure knowledge (AWS, OpenShift). Familiarity with secure/government environments. Experience in contract and commercial management Please send me your CV if you're interested

Job Title: SIAM Service Manager Role Purpose: Design and implement a robust service architecture across a multi-supplier , ensuring seamless integration of ITIL processes, ticket flows, and end-to-end SLAs. This role drives governance, service transition, and continual improvement while maintaining operational excellence. The support scope will cover L3 and L4 resolver groups. L1 and L2 are out of scope. This role will develop architecture for L3 and L4 and define alignment with L1 and L2 managed by MoD. ITSM tool configuration is out of scope for the client SIAM will be owned by the client, and this role will operate within that framework. Key Responsibilities: 1. Service Architecture & Design Define and implement service architecture for integrated services. Establish ITIL-aligned processes (Incident, Problem, Change, Release, Configuration, Request Fulfilment) using client standard ITIL documentation adapted for Deeams requirements. Design ticket flows across suppliers and ensure integration with ITSM tools (e.g., ServiceNow). Set up end-to-end SLAs and OLAs, including reporting dashboards for performance tracking. 2. Service Transition Lead onboarding of new environments into support, including operational readiness checks, runbook creation, and supplier alignment workshops. Coordinate testing and acceptance for new or changed services. 3. Governance & Reporting Operate SIAM governance framework: Monthly service reviews with suppliers. SLA/KPI reporting and trend analysis. Risk and compliance audits. Maintain escalation paths and RACI matrices. 4. Continual Service Improvement (CSIP) Develop CSIP plans to optimise processes, improve SLA adherence, and enhance customer experience. Drive automation and efficiency improvements across ITSM workflows. 5. Stakeholder & Supplier Management Act as the central point of contact for service integration issues. Provide clear reporting to senior leadership on service health and improvement initiatives. Required Skills: Strong experience in SIAM and multi-supplier environments. Expertise in ITIL v4 and ITSM platforms (ServiceNow preferred). Proven ability to design service architecture, ticket flows, and SLA frameworks. Excellent governance, reporting, and stakeholder management skills. Desirable: Cloud infrastructure knowledge (AWS, OpenShift). Familiarity with secure/government environments. Experience in contract and commercial management Fully Remote Inside IR35 January/February Start Date Please send me your CV if you're interested

Job Title: SIAM Service Manager Role Purpose: Design and implement a robust service architecture across a multi-supplier , ensuring seamless integration of ITIL processes, ticket flows, and end-to-end SLAs. This role drives governance, service transition, and continual improvement while maintaining operational excellence. The support scope will cover L3 and L4 resolver groups. L1 and L2 are out of scope. This role will develop architecture for L3 and L4 and define alignment with L1 and L2 managed by MoD. ITSM tool configuration is out of scope for the client SIAM will be owned by the client, and this role will operate within that framework. Key Responsibilities: 1. Service Architecture & Design Define and implement service architecture for integrated services. Establish ITIL-aligned processes (Incident, Problem, Change, Release, Configuration, Request Fulfilment) using IBM standard ITIL documentation adapted for Deeams requirements. Design ticket flows across suppliers and ensure integration with ITSM tools (e.g., ServiceNow). Set up end-to-end SLAs and OLAs, including reporting dashboards for performance tracking. 2. Service Transition Lead onboarding of new environments into support, including operational readiness checks, runbook creation, and supplier alignment workshops. Coordinate testing and acceptance for new or changed services. 3. Governance & Reporting Operate SIAM governance framework: Monthly service reviews with suppliers. SLA/KPI reporting and trend analysis. Risk and compliance audits. Maintain escalation paths and RACI matrices. 4. Continual Service Improvement (CSIP) Develop CSIP plans to optimise processes, improve SLA adherence, and enhance customer experience. Drive automation and efficiency improvements across ITSM workflows. 5. Stakeholder & Supplier Management Act as the central point of contact for service integration issues. Facilitate collaboration between Nordcloud, SixWorks, Cohesive, IBM, and internal teams. Provide clear reporting to senior leadership on service health and improvement initiatives. Required Skills: Strong experience in SIAM and multi-supplier environments. Expertise in ITIL v4 and ITSM platforms (ServiceNow preferred). Proven ability to design service architecture, ticket flows, and SLA frameworks. Excellent governance, reporting, and stakeholder management skills. Desirable: Cloud infrastructure knowledge (AWS, OpenShift). Familiarity with secure/government environments. Experience in contract and commercial management Fully Remote Inside IR35 January/February Start Date Please send me your CV if you're interested

JOB TITLE: DevOps Engineer - DV Cleared Rate: 550- 600/day (Outside IR35) Location: Onsite Clearance: DV Cleared (Mandatory) Flexible Work Option: Condensed working week (e.g., 3 long days, paid for 5) Job Summary We are seeking a technically skilled DevOps & Software Engineer with DV clearance to contribute across the full software development lifecycle and DevOps toolchain. You will design, implement, and maintain scalable, secure, and automated CI/CD pipelines, infrastructure-as-code (IaC), and system monitoring frameworks to support the continuous delivery of secure and reliable software. This role demands a strong grasp of modern DevOps practices, cloud and container technologies, automation tooling, and software engineering principles. You will work closely with development, security, and operations teams to drive a culture of DevSecOps and continuous improvement. Key Responsibilities Design, build, and maintain scalable CI/CD pipelines using modern DevOps tooling. Implement Infrastructure-as-Code (IaC) to provision and manage cloud/on-prem infrastructure. Manage container orchestration platforms and develop containerized solutions. Monitor systems and applications for availability, performance, and security compliance. Automate operational tasks including testing, deployment, patching, and scaling. Apply DevSecOps principles to secure applications and infrastructure across SDLC. Collaborate with cross-functional teams (developers, testers, security analysts) to streamline software delivery. Participate in code reviews, architecture design, and incident resolution. Contribute to the development and documentation of internal DevOps standards and best practices. Mentor junior engineers and foster a DevOps-first mindset within delivery teams. DevOps & Tooling Proficiency (Preferred) Category Tools & Technologies CI/CD GitLab CI/CD, Jenkins, GitHub Actions, CircleCI, Azure DevOps Pipelines Infrastructure-as-Code Terraform, Ansible, AWS CloudFormation, Pulumi Cloud Platforms AWS, Azure, GCP, or private cloud (OpenStack) Containerization Docker, Podman Orchestration Kubernetes (EKS, AKS, GKE), Helm, OpenShift Version Control Git, GitLab, Bitbucket Monitoring & Logging Prometheus, Grafana, ELK Stack, Splunk, Datadog Security & Compliance HashiCorp Vault, Snyk, SonarQube, Trivy, AWS IAM, CIS Benchmarks Configuration Mgmt. Ansible, Puppet, Chef Build Tools Maven, Gradle, NPM, Webpack Testing Tools Selenium, JUnit, Postman, Cypress Other Nexus/Artifactory (artifact repositories), REST APIs, JSON/YAML, Linux system admin

Technical Lead - Java Microservices & APIs Location: Leeds City Centre (Hybrid / Flexible Working) We're looking for a Technical Lead to take ownership of delivering Java microservices and APIs that power high-transaction digital web, app, and payments platforms . This is a hands-on leadership role where you'll drive technical design, coach engineers, and ensure products remain scalable, secure, and fit for purpose in a fast-changing environment. What You'll Do Lead the design, documentation, and delivery of technical solutions to agreed service levels. Guide engineers through implementation, balancing workloads, addressing hotspots, and providing coaching. Oversee deployments, ensuring quality, traceability, and compliance with security standards . Take accountability for technical debt, service levels, and vulnerability management. Collaborate with architects, DevOps engineers, product owners, and Scrum Masters to deliver seamless solutions. Join the out-of-hours support rota for critical digital products. What We're Looking For Strong expertise in Java and microservices development . Proven experience translating complex technical concepts for non-technical stakeholders. Confident influencing and negotiating in a highly regulated environment . Desirable skills include: RESTful design and API Gateway tools (Apigee or equivalent) Kubernetes / OpenShift Monitoring tools such as Grafana, Prometheus, Dynatrace CI/CD with GitLab or Artifactory Security practices (OWASP, JWT, certificates, encryption) Experience within IT support environments Benefits 25 days holiday + Bank Holidays , with the option to buy up to 5 more. Annual bonus of 7% of eligible pay Pension contributions up to 10% . Healthcare package including private medical, dental, and wellbeing support. Access to a benefits portal with discounts across retail, hospitality, and lifestyle. A flexible working culture with support for work-life balance and career growth For more information, please contact

Role Title: Security Engineer Start Date: ASAP End Date: 31st Mar 2026 Location: South of Manchester or Glasgow - 3 days on site per week Rate: 600 per day - PAYE via Umbrella Only Role Overview: We are seeking a highly capable Security Engineer to join a focused team developing a telemetry pipeline MVP. This role requires deep technical expertise in containerised environments, observability tooling, and secure infrastructure design. The ideal candidate will ensure that security is embedded across the pipeline architecture, from deployment to data flow, while collaborating closely with DevOps and development teams. Key Responsibilities: Design and implement security controls across containerised environments using Kubernetes and OpenShift Ensure secure configuration and access management within GitLab version control and CI/CD pipelines Integrate and secure telemetry tools including Cribl, Elastic, Splunk, Fluentd, and Syslog Conduct threat modelling, vulnerability assessments, and risk analysis for the telemetry pipeline Collaborate with DevOps engineers to embed security into infrastructure-as-code and deployment workflows Monitor and respond to security events and alerts from observability platforms Maintain documentation of security architecture, policies, and incident response procedures Required Skills & Experience: Strong hands-on experience with Kubernetes and OpenShift in secure production environments Proficiency in GitLab and secure CI/CD pipeline practices Familiarity with telemetry and logging tools: Cribl, Elastic, Splunk, Fluentd, and Syslog Deep understanding of networking protocols, firewalls, VPNs, and security principles Experience with security frameworks (e.g., NIST, ISO 27001) and compliance requirements Knowledge of container security tools (e.g., Aqua, Twistlock, Trivy) and vulnerability scanners Excellent analytical and communication skills Preferred Qualifications: Certifications such as CISSP, CISM, CKS (Certified Kubernetes Security Specialist), or equivalent Experience in building MVPs or working in startup-like environments Familiarity with cloud security (AWS, Azure, GCP)