Senior DevSecOps Engineer

Introduction

Join us at Gallagher Re, the trailblazers of the reinsurance world, where every day brings new opportunities to shape the future. We empower our clients with cutting-edge analytics and insights, providing them the confidence to make strategic decisions that transform industries. As a team member, you'll be at the forefront of innovation, translating data into impactful solutions and taking the reins of your career like never before.

We believe that every candidate brings something special to the table, including you! So, even if you feel that you're close but not an exact match, we encourage you to apply.

Overview

As a Senior DevSecOps Engineer at Gallagher Re, you will play a vital role in integrating security practices into our DevOps processes. With a technical focus, your primary responsibility will be to ensure the secure and efficient development, deployment, and operation of our software systems. Your expertise in DevOps, combined with your deep understanding of security, will help us incorporate Static Application Security Testing (SAST) scanning and other security measures throughout our development lifecycle.

Engaging with colleagues across Gallagher Re, you'll have an inquisitive approach to your work, engaging early and being prepared to offer constructive challenges where appropriate to build knowledge across the entire organisation.

This role offers a real opportunity to shape the day-to-day experience of hundreds of colleagues and will give you opportunities to stretch and develop your own skillset by working on challenging problems, collaborating with colleagues to grow both individually and as a team, delivering the very best outcomes for our business.

We are encouraging applications across the United Kingdom as this role will be predominantly remote, the entire Technology Team do meet once a month in London so travel to this will be required.

How you'll make an impact

1. Design, implement, and maintain secure and efficient CI/CD pipelines, integrating SAST scanning and other security tools
2. Collaborate with development, operations, and security teams to ensure security best practices are followed throughout the development lifecycle
3. Continuously monitor and assess the security posture of our software systems, identifying and addressing vulnerabilities and risks
4. Implement and maintain infrastructure-as-code (IaC) solutions, ensuring security and compliance requirements are met
5. Manage and configure cloud environments, ensuring appropriate security measures, such as access control, encryption, and logging, are in place
6. Develop and maintain secure container orchestration solutions, leveraging technologies like Kubernetes and Docker
7. Stay up-to-date with the latest security vulnerabilities, trends, and best practices, proactively incorporating relevant findings into our DevSecOps processes
8. Assist in the development and enforcement of security policies, procedures, and guidelines for the engineering team
9. Participate in incident response and remediation efforts, ensuring timely resolution of security issues
10. Provide technical guidance and support to colleagues in understanding and implementing DevSecOps best practices

About you

1. Extensive experience in DevOps, with a focus on security, preferably in a Senior DevSecOps Engineer or similar role
2. Hands-on experience with Static Application Security Testing (SAST) tools and their integration into CI/CD pipelines
3. Deep understanding of security concepts, practices, and technologies, such as access control, encryption, and vulnerability management
4. Proficiency in infrastructure-as-code (IaC) tools, such as Terraform, Ansible, or CloudFormation
5. Experience with container orchestration technologies, such as Kubernetes and Docker
6. Familiarity with cloud platforms and services, such as AWS, Azure, or GCP
7. Experience with scripting and automation skills, preferably in languages like Python, Bash, or PowerShell
8. Excellent problem-solving abilities and attention to detail
9. Fantastic communication and collaboration skills
10. Passion for continuous learning and improvement in the realm of DevSecOps and security

Compensation and benefits

On top of a competitive salary, great teams and exciting career opportunities, we also offer a wide range of benefits.

Below are the minimum core benefits you'll get, depending on your job level these benefits may improve:

1. Minimum of 25 days holiday, plus bank holidays, and the option to 'buy' extra days
2. Defined contribution pension scheme, which Gallagher will also contribute to
3. Life insurance, which will pay 4x your basic annual salary, which you can top-up to 10x
4. Income protection, we'll cover up to 50% of your annual income, with options to top up
5. Health cash plan or Private medical insurance

Other benefits include:

1. Three fully paid volunteering days per year
2. Employee Stock Purchase plan, offering company shares at a discount
3. Share incentive plan, HMRC approved, tax effective, stock purchase plan
4. Critical illness cover
5. Discounted gym membership, with over 3,000 gyms nationally
6. Season ticket loan
7. Access to a discounted voucher portal to save money on your weekly shop or next big purchase
8. Emergency back-up family care
9. And many more...

We value inclusion and diversity

Inclusion and diversity (I&D) is a core part of our business, and it's embedded into the fabric of our organisation. For more than 95 years, Gallagher has led with a commitment to sustainability and to support the communities where we live and work.

Gallagher embraces our employees' diverse identities, experiences and talents, allowing us to better serve our clients and communities. We see inclusion as a conscious commitment and diversity as a vital strength. By embracing diversity in all its forms, we live out The Gallagher Way to its fullest.

Gallagher is Disability Confident Committed. We have pledged to make sure our recruitment process is inclusive and accessible, in addition to supporting our existing employees with any long-term health conditions or disabilities.

We understand that applicants may have disabilities, if you do, you may find some parts of the recruitment process more challenging than others. Don't worry, we're here to help, however, we can only do this if you let us know.

Should you require reasonable adjustments to your application, please get in touch with TAGlobalSupport@ajg.com. If you'd prefer to speak on the phone, please request a call back, leaving details, so we get in touch.

Our employing entity, Arthur J. Gallagher Services (UK) Limited, is proud to be accredited as a Living Wage employer with the Living Wage Foundation. We are committed to diversity and opportunity for all and are opposed to any form of less favourable treatment on the grounds of gender or gender identity, marital status, civil partnership status, parental status, race, ethnicity, colour, nationality, disability, sexual orientation, religion/ belief, age and those with caring responsibilities.

Gallagher believes that all persons are entitled to equal employment opportunity and prohibits any form of discrimination by its managers, employees, vendors or customers based on race, color, religion, creed, gender (including pregnancy status), sexual orientation, gender identity (which includes transgender and other gender non-conforming individuals), gender expression, hair expression, marital status, parental status, age, national origin, ancestry, disability, medical condition, genetic information, veteran or military status, citizenship status, or any other characteristic protected (herein referred to as "protected characteristics") by applicable federal, state, or local laws.

Equal employment opportunity will be extended in all aspects of the employer-employee relationship, including, but not limited to, recruitment, hiring, training, promotion, transfer, demotion, compensation, benefits, layoff, and termination. In addition, Gallagher will make reasonable accommodations to known physical or mental limitations of an otherwise qualified person with a disability, unless the accommodation would impose an undue hardship on the operation of our business.