Senior DevSecOps Engineer
- Posted March 20, 2024
- £75000 - £90000 per annum
- Permanent
-Senior DevSecOps Engineer
-Edinburgh / Hybrid
-Excellent Salary & Benefits
-Immediate Start
Fantastic new role to the market from one of the UK’s fastest growing FinTech’s, which is powering some of the most innovative and well-known consumer investment platforms around today. Our client is seeking a seasoned Senior DevSecOps Engineer to work on a number of exciting products and projects, as they embark on a mission to rebuild the infrastructure of investments and advice in their space.
Performing as a seasoned DevOps Engineer who is security-focused, you will have the opportunity to shape and develop their cutting-edge platform and perform as a passionate security advocate – navigating complex challenges and approaching platform design pragmatically. You will leverage modern tools, languages, and platforms to contribute to efficient, secure, and scalable delivery of high-performance products.
This is a superb opportunity with a forward-thinking and expansive client, offering a truly autonomous role, with candidates being considered from a variety of unique and diverse backgrounds.
Key Skills & Experience
- Experience operating solutions within AWS, utilising Infrastructure-as-Code.
- Writing Infrastructure-as-Code to build secure infrastructure repeatedly.
- Implement security gates within CI/CD workflows to ensure secure deployments.
- Utilising modern tooling to shift security left.
- Collaborating closely with development teams to ensure security is addressed early in the development lifecycle.
- Review security best practice, remediating and implementing controls to ensure compliance.
- Make improvements to observability, building out the data infrastructure and maintaining and deployment of tooling.
- Suggesting improvements to processes and methodologies and challenging the status quo.
- Exposure to Audits/Compliance/Security frameworks.
- Knowledge of embedded security.
- Experience performing vulnerability scanning/penetration testing.
- Threat detection and prevention.
- Cloud account management (e.g. AWS Control Tower/GuardDuty/Config/Security Hub/CloudTrail).
- Identity management (e.g. SAML/OAuth/OIDC/AWS IAM).
- Patch management.
The above is not exhaustive. Please forward your CV to discuss this requirement in more detail to [email protected]