# Platform Engineer (DevSecOps) > CV Library · Fleet, United Kingdom (Hybrid) · Full-time · Posted 2026-05-19 **Salary:** GBP 1–999,999 **Workplace:** hybrid **Department:** Technology ## Description At CV-Library, we have a simple vision: to help the world to work and we are looking for exceptional and talented people to help us realise this vision in both UK and overseas markets. We are in a period of focused internal investment, following a year of key strategic acquisitions and significant investment across all parts of the business, from Tech and Data to People and HR, there’s never been a more exciting time to join us or a better place to grow your career! **The Role ****Hours:** Monday-Friday, 9:00-17:30 **Location:** Fleet **Working Pattern:** Hybrid – 3 days a week on site We’re building out a Platform Engineering function, and this is a pivotal hire! You’ll be joining at the point at which we have strong foundations (GitHub, ArgoCD, EKS, Terraform) and your job is to take us to the next level: a self-service Internal Developer Platform that gives our engineer golden paths to deploy confidently, and security practices embedded from the start rather than bolted on at the end. This isn’t a pure security role and it isn’t a pure infrastructure role. It sits squarely in the middle – someone who thinks in developer experience but never forgets that every pipeline, every template and every abstraction is also an attack surface. **Responsibilities:** - Design and build our Internal Developer Platform, likely centred around Backstage, giving development teams self-service access to environments, pipelines and observability - Define and maintain golden path templates – opinionated, paved-road patterns for service creation, deployment, and configuration that reduce cognitive load for application teams - Own and evolve our GitOps workflows using ArgoCD, improving consistency and developer autonomy around deployments - Collaborate with DevOps and development teams to improve CI/CD pipelines in GitHub Actions, driving towards fast, reliable, repeatable delivery - Embed security tooling into CI/CD pipelines – SAST, DAST, dependency scanning, secrets detection, container image scanning (e.g. Snyk, Trivy, Checkov or equivalents) - Establish and enforce secure-by-default patterns within IDP templates so that security guardrails are a feature of the golden path, not an afterthought - Support secrets management practices across Kubernetes workloads and pipeline tooling - Contribute to infrastructure security posture – RBAC, IAM policy hygiene, network policy and supply chain integrity - Work with InfoSec to translate security requirements into platform-level controls rather than per-team remediations **What we’re looking for** - Solid hands-on experience with Kubernetes (EKS or equivalent) – comfortable with workload deployment, RBAC, namespacing, and networking - Experience building or contributing to CI/CD pipelines in GitHub Actions - Working knowledge of GitOps principles and practical experience with ArgoCD or Flux - Infrastructure as Code – Terraform at a minimum - Demonstrable security mindset – you’ve integrated at least some security tooling into a pipeline and understand why it matters at the platform level - Strong communication skills – you’ll be working with developers who just want to ship, and you need to sell good practice without friction We are actively committed to promoting a fully diverse and inclusive workforce and we welcome applications for this role from all candidates who meet the key requirements. Please do not hesitate to get in touch should you require any reasonable adjustments to assist with your application. ## Apply [Apply at CV Library](https://apply.workable.com/cv-library-2/j/9DF5FBDB15/apply) --- Powered by [Workable](https://www.workable.com)