DevOps + Python
Vallum
Sheffield, United Kingdom
2 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
Intermediate Compensation
£ 117KJob location
Sheffield, United Kingdom
Tech stack
Amazon Web Services (AWS)
Continuous Integration
DevOps
Groovy
JSON
Python
Maven
Performance Tuning
Secure Hash Algorithm
SonarQube
YAML
Sonatype
Caching
Npm(Software)
Terraform
Oracle Cloud Infrastructure
Devsecops
Jenkins
Static Application Security Testing
Job description
- Design and maintain Groovy pipeline steps (build, test, package, scan, deploy).
- Extend Python tooling for SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation (SonarQube, Sonatype IQ,SAST/Container).
- Optimize performance (parallel builds, caching, scope-reduced BOMs, dependency prefetch).
- Ensure artifact integrity (correct SHA1/SHA256 mapping, reproducible inputs, evidence modelling).
- Refactor Legacy scripts (remove global state, consolidate hashing, standardize templates).
- Document ci-config.yaml standards and usage patterns.
- Mentor engineers on secure pipeline developme
Requirements
- 7+ years engineering; 3+ in CI/CD platform or DevSecOps.
- Strong Jenkins + Groovy shared library expertise.
- Advanced Python automation (JSON/YAML processing, tooling scripts).
- Deep Maven/NPM/Python packaging knowledge; exposure to Helm/Terraform and container image metadata.
- Supply-chain security (SLSA, CycloneDX SBOM, digests).
- Experience with SonarQube, Sonatype IQ, container and SAST scanning.
- Proven performance tuning (caching, parallelization, dependency pruning).
- Compliance Awareness.
Nice-to-Have:-
- Artifact signing/attestations (cosign, OCI).
- Terraform module and Helm chart publishing patterns.
- GitOps or release automation experience.
- GCP/AWS cloud experience
