Enable job alerts via email!
DevOps Engineer
Siliconlogic
Sheffield
On-site
GBP 60,000 - 80,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A technology company in the United Kingdom seeks an experienced CI/CD Engineer to design and maintain Jenkins pipelines, extend Python tooling, and optimize performance for various projects. This role requires over 7 years of engineering experience and a strong expertise in Jenkins and Groovy. The ideal candidate will also mentor others in secure pipeline development and contribute to enhancing supply chain integrity through advanced automation. A collaborative environment awaits those who thrive on challenges.
Qualifications
- 7+ years of engineering; 3+ years in CI/CD platform or DevSecOps.
- Strong expertise in Jenkins and Groovy shared library.
- Advanced Python automation skills.
Responsibilities
- Design and maintain Groovy pipeline steps.
- Extend Python tooling for SLSA provenance and SBOM generation.
- Optimize performance for builds and dependency management.
Skills
Own and evolve our Jenkins Shared Library powering multi‑language builds (Java/Maven, Node/NPM, Python, Helm, Terraform, containers). Deliver fast, secure, provenance‑rich pipelines (SLSA, SBOM, digests) and strengthen supply‑chain integrity across teams.
- 7+ years of engineering; 3+ years in CI/CD platform or DevSecOps.
- Strong Jenkins + Groovy shared library expertise.
- Advanced Python automation (JSON/YAML processing, tooling scripts).
- Deep Maven/NPM/Python packaging knowledge; exposure to Helm/Terraform and container image metadata.
- Experience with SonarQube, Sonatype IQ, container and SAST scanning.
- Proven performance tuning (caching, parallelization, dependency pruning).
- Compliance Awareness.
- Terraform module and Helm chart publishing patterns.
- GitOps or release automation experience.
- Design and maintain Groovy pipeline steps (build, test, package, scan, deploy).
- Extend Python tooling for SLSA provenance, SBOM generation, hash/digest accuracy, and security scan aggregation (SonarQube, Sonatype IQ).
- SAST/Container scanning.
- Optimize performance (parallel builds, caching, scope‑reduced BOMs, dependency prefetch).
- Ensure artifact integrity (correct SHA1/SHA256 mapping, reproducible inputs, evidence modeling).
- Refactor legacy scripts (remove global state, consolidate hashing, standardise templates).
- Document ci‑config.yaml standards and usage patterns.
- Mentor engineers on secure pipeline development and supply‑chain practices.
- Troubleshoot and prevent pipeline incidents.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
