
DevSecOps Engineer AI
eFinancialCareersOwn the secure engineering and automation layer for the AI platform. This role makes releases controlled, repeatable and auditable through GitHub, CI/CD, Terraform, GitOps, OPA/Rego, code scanning, security gates and release/change evidence.
Core responsibilities- Design, maintain and troubleshoot secure CI/CD pipelines and GitHub workflows.
- Maintain branch protection, pull request checks, required approvals and deployment controls.
- Build and maintain Terraform / Infrastructure-as-Code modules and GitOps deployment patterns.
- Integrate OPA/Rego policy-as-code into CI/CD for pre-deployment guardrails.
- Implement and operate code scanning: SAST, dependency, secret, IaC and container scanning where applicable.
- Ensure critical/high findings block merge or deployment unless formally excepted.
- Support release management: environment consistency, promotion, rollback planning and post-release validation.
- Track security findings, policy exceptions and remediation evidence with clear reporting.
- Support repository standardisation, pipeline templates, deployment automation and audit evidence.
- Work closely with Cloud Engineer on Azure platform patterns and operational handover.
- Strong DevOps / DevSecOps engineering experience in cloud environments.
- Strong GitHub, CI/CD, branch protection, pull request governance and deployment automation skills.
- Strong Terraform, Infrastructure-as-Code and GitOps capability.
- Experience with OPA/Rego or comparable policy-as-code tooling.
- Good understanding of secure software delivery and cloud security controls.
- Working knowledge of SAST, dependency scanning, secret scanning, IaC scanning and container scanning.
- Ability to troubleshoot pipelines, deployments, infrastructure, security gates and access issues.
- Good documentation discipline and ability to turn controls into repeatable standards.
- Has built or standardised CI/CD pipelines and deployment controls in a regulated enterprise.
- Can explain Terraform state, environments, approval gates, rollback and drift control.
- Can explain how code/security scanning should work in pull requests and release pipelines.
- Has implemented policy-as-code or equivalent automated governance, not just written manual standards.
Opens the company's application page
Listed via
Reed
reed.co.uk
Similar roles

VP M&A, Transport, Logistics & Infrastructure M&A - top boutique - Goodman Masson
eFinancialCareers

Cloud Engineer AI
eFinancialCareers
Senior Infrastructure Engineer
Fazer Recruitment
IT Infrastructure Engineer (2nd / 3rd Line Support) – Daventry/Remote
MYO Talent
Design & Tech
Related reads from TCHNX

The Quiet Revolution in Local-First Software
As major platforms face outages and data breaches, a new generation of developers is building applications that prioritise local data storage and peer-to-peer sync, challenging the cloud-first orthodoxy that's dominated tech for two decades.

The Quiet Revolution in Edge AI: Why Your Next Computer Might Not Need the Cloud
As neural processing units become standard in consumer devices, we're witnessing a fundamental shift in how AI applications work. Local processing is no longer a fallback; it's becoming the preferred architecture.

The Rise of AI-Assisted Code Generation 2: Are Developers Becoming Prompt Engineers?
As AI coding assistants reshape software development, the industry grapples with a fundamental question: is writing code giving way to writing prompts? We examine how London's tech scene is adapting to this seismic shift.