DeveloperSecOps Team Lead

Summary

Join BMLL as an experienced DevSecOps Team Lead to build and grow a high-performing DevSecOps function. You will own the secure evolution of our AWS cloud-native infrastructure, CI/CD pipelines, and deployment practices, embedding security, reliability, and operational excellence into every phase. Partner with Engineering, Platform, and Security stakeholders to ensure DevSecOps drives business value and customer trust. Lead the DevSecOps roadmap, setting vision and standards for CI/CD, advocating AWS best practices, and governing a secure software supply chain. Mentor and develop a cross-functional team, fostering a collaborative environment, and champion DevSecOps ways of working. Lead risk assessments, partner with Compliance, and ensure all configurations are compliant. BMLL offers a competitive salary, benefits, and career progression opportunities.

Requirements

• Proven DevSecOps/DevOps leadership with full-lifecycle AWS infrastructure ownership
• Hands-on AWS (IAM, VPC, GuardDuty, CloudTrail), CI/CD (GitHub Actions, Terraform, JFrog) and IaC governance
• Deep application-security knowledge (OWASP, Secure SDLC, supply-chain risks)
• Scripting proficiency (Python, Go or Bash) and experience with scanning tools (Trivy, Grype, SonarQube)
• Expertise in GitOps, Policy-as-Code and compliance tooling

Responsibilities

• Define and champion the DevSecOps roadmap, aligning infrastructure, security and engineering priorities
• Set vision and standards for CI/CD (GitHub Actions, Terraform, JFrog) with built-in security (SAST, SCA, IaC scanning)
• Advocate AWS best practices (IAM, KMS, VPC security, GuardDuty, CloudTrail) and enforce Infrastructure-as-Code governance
• Architect, deploy, version (AMI/Docker), patch and govern AWS infrastructure end-to-end
• Establish central IaC standards, approval workflows and formal change controls
• Standardise monitoring and observability: dashboards, high-signal alerts and performance benchmarks (ECS/EKS, Fargate, GPU)
• Optimise costs and latency (warm container pools, VPC endpoints, tagging and governance)
• Govern a secure software supply chain: artifact management, vulnerability scanning and SBOM generation
• Drive “shift-left” security—integrating secure patterns into developer workflows and CI/CD pipelines
• Rapidly triage and remediate security alerts across build, cloud and runtime environments
• Mentor & Develop: Provide clear direction, support and mentorship to a cross-functional team of DevOps and Security Engineers
• Objectives & Reviews: Set and review individual/team objectives aligned to business goals; conduct regular 1:1s, performance reviews and development conversations
• Culture & Inclusion: Foster a collaborative, psychologically safe environment that values open communication and continuous improvement
• Skills & Growth: Identify skills gaps, plan training and career-development initiatives
• Resourcing & Balance: Ensure appropriate team resourcing, balanced workloads and act as escalation point for conflicts or challenges
• Cross-Functional Collaboration: Coordinate with other team leads on initiatives and resource planning
• Best Practices: Champion DevSecOps ways of working and track KPIs (deployment frequency, lead time, failure rate, MTTR, security posture, capacity and cost efficiency)
• Lead risk assessments for new technologies and deployment patterns
• Partner with Compliance to support ISO 27001, SOC 2, DORA and other frameworks
• Ensure all configurations are version-controlled, auditable and policy-compliant
• Maintain and test Business Continuity and Disaster Recovery plans

Preferred Qualifications

• AWS Security/DevOps certification
• Regulated-industry experience (finance, healthcare)
• Container/Kubernetes/Fargate and autoscaling familiarity (ECS/EKS, Karpenter)
• Secret-management systems (Vault, Secrets Manager)
• Exposure to ISO 27001, SOC 2, DORA frameworks
• Vision & Strategy: Evangelise secure, performant DevSecOps roadmaps
• Collaboration & Influence: Build strong partnerships across teams
• Execution Excellence: Deliver reliable, auditable, optimised deployments
• Continuous Improvement: Drive a culture of learning and innovation
• Resilience & Ownership: Own outcomes through incidents and change
• Customer Focus: Align practices to accelerate business value and user experience

Benefits

• Competitive salary
• 25 days holiday plus bank holidays
• Share Options after completion of probationary period
• Discretionary Bonus
• Pension Scheme
• Private Medical Insurance
• Work remotely abroad for up to 40 business days each year
• Life Insurance
• Combination of remote and London-based office working (2-3 days in office per week)
• A yearly Well being Physical Activity budget
• Continuous learning through funded training and challenging projects
• Collaborative culture
• Weekly team lunches
• Free Fruit, snacks, and drinks provided throughout the day (When office based)
• Regular Team Socials
• Cycle to Work Scheme