Senior DevSecOps Engineer (Contract)

The MRJ team have an urgent contract opportunity available for an experienced Senior Application Security Engineer to help shape and implement a modern Secure SDLC capability across the organisation during a major period of technology transformation.

This is a highly visible role operating across Engineering, Security, and Architecture, focused on embedding security into software delivery without slowing innovation down.

You’ll play a key role in helping the company define what “good” looks like from a modern application security perspective, particularly as the business accelerates delivery across AI, Agentic AI, and a large portfolio of new application projects.

The Role

This is not a traditional operational security role.

We need someone capable of stepping into a complex engineering environment, assessing the current state, and building a pragmatic roadmap toward a scalable, modern Secure SDLC programme.

You’ll work closely with both Security and Engineering leadership, embedding yourself within teams to improve security maturity, influence delivery practices, and help create a more security-aware engineering culture.

The role requires a balance of strategic thinking, stakeholder management, and hands-on technical credibility.

What You’ll Be Doing?

• Assess the current application security and SDLC landscape
• Define and implement a Secure SDLC strategy and roadmap
• Embed security into engineering and development workflows
• Help establish modern AppSec and DevSecOps best practices
• Partner closely with Engineering teams to improve secure development maturity
• Support security considerations across AI and emerging technology initiatives
• Help create scalable, developer-friendly security processes
• Influence stakeholders across Security, Engineering, and Leadership
• Drive security enablement rather than gatekeeping

What experience are we looking For?

• Strong background in Application Security, DevSecOps, or Security Engineering
• Experience building or maturing Secure SDLC programmes
• Strong understanding of modern engineering environments and CI/CD pipelines
• Experience embedding security into Agile / DevOps teams
• Ability to assess current state and define future-state security maturity
• Strong stakeholder management and communication skills
• Pragmatic, collaborative mindset with the ability to influence engineering teams
• Comfortable operating in fast-paced transformation environments

Desirable Experience

• Cloud-native environments (AWS, Azure, or GCP)
• SAST, DAST, SCA, container or IaC security tooling
• AI / GenAI / Agentic AI security considerations
• Experience within high-growth or transformation-led organisations