DevSecOps Engineer

NEW GROUND WON’T BREAK ITSELF.

Grant Thornton is building a new digital team as part of the firm’s £500m multi‑year investment to transform how we work and deliver for clients. This investment is focused on redesigning our operating model around the way clients make decisions, using data, digital tools, and streamlined processes to remove friction, reduce duplication and provide faster, clearer insights. The new digital team will play a critical role in shaping and embedding these changes across the firm, developing tools, platforms, and digital capabilities that accelerate decision‑making, improve the client experience, and empower our people to work smarter. Working at the heart of a major firm‑wide transformation, this team will help modernise core processes, support innovation, and ensure we deliver a more efficient, tech‑enabled, and future‑focused service for our clients

We’re happy to talk flexible working and consider reduced hours and job shares, we’ll support you to balance your work and life.

A look into the role

As a DevSecOps Engineer within our practice, you will:

• Architect, implement, and operate CI/CD pipelines across all environments.
• Develop infrastructure-as-code (eg Bircep/Terraform) for consistent, repeatable, secure cloud provisioning.
• Introduce and manage security tooling including vulnerability scanning, dependency scanning, and SIEM integrations.
• Ensure strong identity, access, and secrets management aligned with zero-trust principles.
• Implement observability tooling and dashboards (logs, metrics, alerts) for proactive issue detection.
• Conduct disaster recovery and business continuity planning and exercises.
• Collaborate with infrastructure, security, product, software engineering, and architecture teams to guide secure design and delivery.
• Act as subject matter expert for DevSecOps practices, tooling, and governance

Knowing you’re right for us

Joining us as a DevSecOps Engineer , the minimum criteria you’ll need is proven experience designing and managing secure CI/CD pipeline and cloud-native infrastructure. A strong understanding of Azure cloud, including networking, identity, compute, and security controls and hands on experience with infrastructure-as-code (eg Bicep/Terraform) and automation tooling.  It would be great if you had some of the following skills, but don’t worry if you don’t tick every box, we’ll help you develop along the way.

• Ability to embed security practices such as threat modelling, SAST, DAST, and policy-as-code.
• Strong communication and collaboration skills, able to influence engineers and stakeholders.
• Experience delivering in complex or multi-stakeholder environments.
• Certifications in cloud (Azure), security (e.g., Security+, CISSP), or DevOps.
• Experience leading or establishing DevSecOps or platform engineering capabilities.
• Experience introducing testing and security automation into existing pipelines.
• Experience with Crowdstrike or similar

Knowing we’re right for you

Embracing uniqueness, the culture at Grant Thornton thrives on the contributions of all our people, we never settle for what is easy, we look beyond to deliver the right thing, for everyone.  Building an inclusive culture, where we value difference and respect our colleagues helps our people to perform at the best of their ability and realise their potential.

Our open and accessible culture means you’ll interact with leaders who are interested in you and everything you bring to our firm. The things that set you apart, we value them. That’s why we give you the freedom to bring your whole self to work and pursue your passions inside and outside of work.

Beyond the job 

Life is more than work. The things you do, and the people you’re with outside of work matter, that’s why we’re happy to look at flexible working options for all our roles, and we’ll always do our best to keep your work and life in balance.

The impact you can make here will go far beyond your day job. From secondments, to fundraising for local charities, or investing in entrepreneurs in the developing world, you’ll be giving back to society. It’s that drive to do the right thing that runs through our every move, grounded in our firm’s values – purposefully driven, actively curious and candid but kind.

We’re looking for people who want to contribute, spark fresh ideas and go beyond expectations. People who want to be able to proudly do what’s right, for the firm, our clients, our people and themselves. It’s how it should be.

#LI-ME1