Senior Software Engineer (DevSecOps) - Contract (Inside IR35) - Skipto

Exalto Consulting is working with a major UK organisation on a long-term engineering enablement programme. We are looking for a Senior Software Engineer with strong DevSecOps experience to help product teams improve how software is built, secured and delivered. You will work closely with engineers to strengthen CI/CD pipelines, cloud-native services, testing practices and observability, enabling teams to deliver smaller, safer changes more frequently. The role is hands-on and engineering-focused, with opportunities to influence development practices, delivery tooling and operational resilience across multiple teams.

What You'll Be Doing You will support engineering teams by improving the systems and practices that underpin reliable software delivery., * Designing and improving CI/CD pipelines that automate build, test, security and deployment processes.

• Supporting teams to adopt modern development practices such as trunk-based development, feature flags and progressive delivery approaches.
• Building and maintaining cloud-native services and APIs.
• Embedding DevSecOps practices, including security scanning and secure pipeline design.
• Implementing observability practices such as metrics, tracing and structured logging.
• Helping teams use production-like environments and reliable test data to support automated testing.
• Introducing or improving contract, performance, resilience and security testing within delivery pipelines.
• Supporting incident response and operational readiness by ensuring services are well monitored and resilient.
• Working collaboratively with engineers, platform teams and release specialists to remove delivery bottlenecks.

Technology Environment You will be working within a modern technology environment built around cloud platforms, automation and observable services. We are particularly interested in candidates with experience across several of the following:

Programming & Frameworks

• .NET/C#
• Java or Kotlin
• JavaScript/TypeScript (Node.js)
• Python
• RESTful API development

Cloud & Infrastructure

• Public cloud platforms such as AWS, Azure or Google Cloud
• Containerisation and orchestration (Docker, Kubernetes)
• Infrastructure as Code (Terraform or similar)
• Cloud-native and event-driven architectures

DevOps & CI/CD

• CI/CD platforms such as GitHub Actions, GitLab CI, Azure DevOps or Jenkins
• Git-based development workflows
• Automated build and release pipelines
• Progressive delivery approaches such as feature flags, canary releases and blue/green deployments

Security

• Static and dynamic security scanning
• Dependency and vulnerability management
• Secure pipeline design and supply chain practices

Observability

• Metrics, logs, and distributed tracing
• Monitoring platforms such as Prometheus, Grafana, Datadog or similar
• Service monitoring aligned to service level objectives

Testing

• Automated testing frameworks
• Contract testing (eg Pact or similar)
• Performance testing
• Resilience or chaos testing approaches

We're interested in experienced engineers who combine strong technical capability with a practical understanding of how teams deliver software in real production environments. You will likely have:

• Experience building and operating cloud-native applications and APIs.
• Strong knowledge of CI/CD and DevOps practices.
• Experience introducing or improving DevSecOps practices within engineering teams.
• Confidence using observability tools to diagnose and resolve production issues.
• Experience improving software delivery reliability and performance across teams.
• A collaborative approach and the ability to work effectively with engineers across multiple disciplines.

Exalto Consulting works with organisations that want to improve how technology supports their business. We focus on building strong partnerships, supporting skilled professionals, and helping teams deliver meaningful change.