About the Company JMAN Group is a fast-growing data engineering & data science consultancy. We work primarily with Private Equity Funds and their Portfolio Companies to create commercial value using Data & Artificial Intelligence. In addition, we also work with growth businesses, large corporates, multinationals, and charities.We are headquartered in London with Offices in New York, London and Chennai. Our team of over 450 people is a unique blend of individuals with skills across commercial consulting, data science and software engineering.We were founded by cousins Anush Newman (Co-founder & CEO) and Leo Valan (Co-founder & CTO) and have grown rapidly since 2019. In May 2023 we took a minority investment from Baird Capital and in January 2024 we opened an office in New York with the ambition of growing our US business to be as large as, if not bigger than, our European business by 2027.Why work at JMAN?Our vision is to ensure JMAN Group is the passport to our team’s future. We want our team to go on a fast-paced, high-growth journey with us – when our people want to do something else, the skills, training, exposure, and values that JMAN has instilled in them should open doors all over the world.Current Benefits:Competitive annual bonus Market-leading private health insurance Regular company socials Annual company away days Extensive training opportunitiesKey Responsibilities: DevSecOps & Security Enablement: Design, build, and maintain CI/CD pipelines for application and infrastructure deployments. Automate infrastructure provisioning using Infrastructure as Code (IaC) tools such as Terraform or CloudFormation. Manage and optimise containerised workloads using Docker and Kubernetes. Implement and manage cloud infrastructure across AWS, Azure, and GCP, ensuring high availability and scalability. Configure and manage monitoring, logging, and alerting systems to support operational visibility and incident response. Collaborate with development teams to improve deployment frequency, reliability, and recovery time. Embed security controls into CI/CD pipelines using shift-left security practices. Implement SAST, DAST, SCA, container image scanning, and IaC security scans within delivery workflows. Enforce secure coding and deployment practices across teams. Manage secrets and credentials, ensuring secure storage, access, and rotation. Implement identity and access management (IAM) models, including least-privilege policies and RBAC. Perform security hardening of operating systems, containers, Kubernetes clusters, and cloud services. Support compliance and audit requirements by ensuring platforms and pipelines meet defined security standards.Platform, Networking & Operations: Own the design and evolution of secure cloud platforms used across projects, ensuring environments are scalable, reliable, and aligned with delivery needs across Azure and AWS. Define and maintain secure platform patterns for networking, connectivity, identity integration, and workload isolation across virtual machines, managed services, and container platforms. Enable and support secure networking architectures, including private connectivity patterns and hybrid access, working closely with networking and infrastructure teams. Establish platform-level observability standards, ensuring logging, monitoring, and alerting are consistently applied and security-relevant signals are available. Support vulnerability remediation and platform hardening initiatives by driving structural fixes (patterns, templates, pipelines) rather than one-off changes. Validate adherence to defined platform and security standards, reviewing changes and guiding remediation where deviations are identified. Support cloud migration and modernisation initiatives by ensuring workloads are onboarded using secure, repeatable platform patterns. Drive hands-on technical contribution with planning, prioritisation, and coordination, ensuring platform and DevSecOps work aligns with broader delivery timelines.Skills & Qualifications Bachelor’s degree in Computer Science, Information Technology, Engineering, or a related field, or equivalent practical experience. Strong experience building and supporting cloud platforms on Azure and/or AWS, with a focus on secure delivery and operational reliability. Strong understanding of DevSecOps principles, including secure pipeline design, shift-left security, and automation-driven controls. Hands-on experience with Infrastructure as Code (e.g. Terraform), including designing reusable, security-aware modules. Strong experience designing and operating CI/CD pipelines, with integrated security and release controls. Solid understanding of cloud security fundamentals, including identity, access control, secure networking, secrets management, and runtime security. Good working knowledge of container platforms and Kubernetes, including security considerations around access, images, and workloads. Experience using security testing and analysis tools to support platform and DevSecOps security, including: Kali Linux for security validation and investigation activities Penetration testing and security assessment tools to review findings and support remediation Network traffic analysis tools such as Wireshark for troubleshooting and security investigations Strong understanding of OWASP Top 10 vulnerabilities and secure application design principles. Experience with container and Kubernetes security concepts, including cluster hardening and runtime security. Hands-on experience or familiarity with security tools such as Trivy, Checkov, and SonarQube. Experience managing secrets and credentials using enterprise-grade secrets management solutions. Proficiency in at least one scripting or automation language (PowerShell, Bash, Python, or similar). Ability to enable and guide multiple teams, balancing hands-on work with review, standardisation, and coordination responsibilities. Cloud or Kubernetes certifications are beneficial but not mandatory.Preferred Qualifications 3–5 years of overall experience in DevSecOps, Platform Engineering, or Cloud Engineering roles, with increasing responsibility for security enablement. Hands-on exposure to security testing or assessment activities using tools such as Kali Linux, penetration testing utilities, or network analysis tools (e.g. Wireshark). Experience embedding security controls into CI/CD pipelines at scale rather than operating tools manually. Exposure to container and Kubernetes security practices, including image scanning and access controls. Experience supporting data or analytics platforms from a platform and security enablement perspective (not hands-on data engineering). Experience working in fast-growth, consulting, or multi-team environments, where shared platforms and standards are critical. Exposure to multi-cloud or hybrid environments (Azure and AWS).Behavioural Competencies At JMAN, we expect our team members to embody the following: Self-Driven & Proactive– Take ownership, execute tasks independently, and drive solutions with minimal supervision. Adaptability & Resilience– Thrive in a high-performance, entrepreneurial environment and navigate dynamic challenges effectively. Commitment & Engagement– Ensure timesheet compliance, attend meetings regularly, follow company policies, and actively participate in org-wide initiatives. Teamwork & Collaboration– Share knowledge, support colleagues, and contribute to talent retention and team success. Professionalism & Continuous Improvement– Maintain a professional demeanour and commit to ongoing learning and self-improvement. Mentoring & Knowledge Sharing– Guide and support junior team members, fostering a culture of continuous learning and professional growth. Advocacy & Organizational Citizenship– Represent JMAN positively, uphold company values, respect others, and honour commitments, including punctuality and timely delivery.
Job Title
DevSecOps