Lead DevSecOps Engineer

Company Description

John Crane, a business of Smiths Group, is a global leader in mission-critical flow control solutions for energy and process industries that enable efficient and sustainable operations. Our products include mechanical seals and systems, couplings, bearings, filtration systems, and predictive digital monitoring technologies. 

We have a global network of more than 200 sites in over 50 countries and employ more than 6,000 people worldwide. We partner with our customers to help them keep their operations safe, reduce downtime, improve efficiency, and meet the latest environmental standards. 

John Crane is part of Smiths Group. For over 170 years, Smiths has been pioneering progress by engineering for a better future. We serve millions of people every year, helping to create a safer, more efficient, productive, and better-connected world across four global markets: energy, security & defence, space & aerospace, and general industrial. Listed on the London Stock Exchange, Smiths employs approximately 16,000 colleagues in over 50 countries. 

Job Description

Key accountabilities:

• Embed Security into CI/CD Pipelines
• Continuous Vulnerability Management
• Secure Cloud & Infrastructure (IaC)
• Secrets & Access Management
• Monitoring, Incident Response & Compliance

Key activities:

• Maintain the overall security posture of the IIoT platform
• Ensure solutions are secure by design and compliant by default
• Minimize security risks without impacting industrial operations
• Provide timely and pragmatic security guidance to stakeholders
• Lead effective response to security incidents
• Build trust with customers, auditors, and internal teams

Responsible:

• Implementing and maintaining security controls across the CI/CD pipeline
• iIentifying, prioritizing, and remediating vulnerabilities
• Securing cloud infrastructure, access, and secrets management

Qualifications

Experience & Education:

• Min 7 years 
• A bachelor’s or advanced degree in computer science or any related stream.
• Experience with cloud, hybrid, and enterprise environments & exposure to IIOT, OT platforms

Technical Skills:

• Cloud security architecture (Azure preferred)
• Secure application development and vulnerability management
• DevSecOps concepts and CI/CD security integration
• Enterprise and on‑premises security controls
• Incident response and security operations
• CKA (Certified Kubernetes Architecture)
• CKS (Certified Kubernetes Security) - Prefered

Standards & Certifications (Exposure or Preferred):

• ISO 27001 / ISO 27002
• NIST Cybersecurity Framework
• IEC 62443 (Industrial Security)
• Cloud security certifications (Azure / AWS – desirable)

People Skills:

• Must demonstrate the ability to work in diverse, cross-functional teams in a dynamic business environment
• Excellent written and verbal communication skills

Additional Information

With colleagues stretching across the globe, we are proud of our diversity. To foster inclusivity, we run employee resource groups (ERGs) to provide a safe space for employees to connect and support each other. Our cross-business ERGs include Veterans, Pride Network, Black Employee Network, Women@Work Network, and Neurodiversity. 

Across our company, we recognize excellence, culminating in the Smiths Excellence Awards, our annual celebration of the most extraordinary activities, people, and projects that best showcase our strengths and help drive our business forward. We announce these on our annual Smiths Day, a global celebration of Smiths around our network. 

Join us for a great career with competitive compensation and benefits, while helping engineer a better future. 

We believe that different perspectives and backgrounds are what make a company flourish. All qualified applicants will receive equal consideration for employment regardless of color, religion, sex, sexual orientation, gender identity, national origin, economic status, disability, age, or any other legally protected characteristics. We are proud to be an inclusive company with values grounded in equality and ethics, where we celebrate, support, and embrace diversity.

At no time during the hiring process will Smiths Group, nor any of our recruitment partners ever request payment to enable participation – including, but not limited to, interviews or testing. Avoid fraudulent requests by applying jobs directly through our career’s website (Careers - Smiths Group plc)