Scrum Master

Hellowork Consultants
London
GBP 60,000 - 80,000
Job description

Job Description

We are seeking a highly skilled and motivated Scrum Master with a strong background in Security, AWS, and Rego Policies to join our dynamic and growing team. As a Scrum Master, you will play a key role in facilitating agile processes, driving continuous improvement, and supporting the development and implementation of security solutions in an AWS environment. You will also assist the team in working with Rego Policies to enforce compliance and security standards.

This role requires excellent communication skills, a deep understanding of security practices, and the ability to work with cross-functional teams to deliver secure, scalable, and compliant solutions.

Key Responsibilities:

1. Agile Facilitation: Facilitate Scrum ceremonies including daily stand-ups, sprint planning, sprint reviews, and retrospectives for teams working on security-related features in AWS.

2. Security Focus: Help ensure that security best practices and policies are integrated into the development lifecycle. Collaborate with security engineers to ensure that security concerns are identified and addressed early in the sprint.

3. AWS Expertise: Work with AWS infrastructure and development teams to ensure that security controls are properly implemented in the cloud environment. Familiarity with AWS security tools and services (e.g., AWS IAM, KMS, VPC, etc.) is a must.

4. Rego Policies & Compliance: Collaborate with teams to define and implement security and compliance rules using Rego (policy as code), integrating them into CI/CD pipelines and security automation processes.

5. Continuous Improvement: Foster a culture of continuous improvement within the teams, identifying and removing impediments, streamlining processes, and supporting the team in adopting agile practices to improve overall efficiency and effectiveness.

6. Cross-Functional Collaboration: Work closely with product owners, security architects, developers, and QA engineers to ensure security requirements are met, and deliverables are on time and meet the highest quality standards.

7. Stakeholder Management: Keep key stakeholders informed about progress, risks, and dependencies related to security initiatives, ensuring alignment between business objectives and security practices.

8. Coaching and Mentoring: Coach the team and organization on agile practices, ensuring that security principles and compliance requirements are incorporated into agile workflows and that the team has the right resources and knowledge to succeed.

Required Qualifications:

Experience:

3+ years as a Scrum Master in an agile environment.

Experience working with security-focused teams or projects, especially in cloud environments (AWS).

Strong knowledge of cloud security best practices, including AWS-specific tools and services.

Familiarity with Rego policies for security and compliance automation (e.g., using OPA (Open Policy Agent)).

Technical Skills:

Deep understanding of AWS services, security features, and best practices (IAM, S3, EC2, Lambda, VPC, etc.).

Knowledge of Rego and experience writing, testing, and applying policies for security and compliance automation.

Familiarity with infrastructure-as-code (IAC) tools such as Terraform or CloudFormation.

Experience with CI/CD pipelines and security automation in cloud environments.

Agile Methodologies:

Certified Scrum Master (CSM), or other Agile/Scrum certifications (e.g., PMI-ACP, SAFe, etc.).

Strong understanding of Agile principles, values, and practices (Scrum, Kanban).

Soft Skills:

Excellent facilitation, coaching, and mentoring abilities.

Strong communication and interpersonal skills to manage cross-functional teams and stakeholders.

Ability to manage conflict and facilitate discussions in a collaborative and inclusive manner.

Strong problem-solving and critical-thinking abilities to remove blockers and keep teams focused on delivering value.

Preferred Qualifications:

Experience with AWS security tools (e.g., AWS GuardDuty, Inspector, Config, Macie).

Familiarity with container security (e.g., Kubernetes, Docker).

Experience with DevSecOps practices and integrating security into the CI/CD pipeline.

Experience in other policy-as-code frameworks and tools (e.g., HashiCorp Sentinel, Kubernetes policies).

Get a free, confidential resume review.
Select file or drag and drop it
Avatar
Free online coaching
Improve your chances of getting that interview invitation!
Be the first to explore new Scrum Master jobs in London