Senior DevSecOps Engineer

-Senior DevSecOps Engineer
-Edinburgh / Hybrid
-Excellent Salary & Benefits
-Immediate Start

Fantastic new role to the market from one of the UK’s fastest growing FinTech’s, which is powering some of the most innovative and well-known consumer investment platforms around today. Our client is seeking a seasoned Senior DevSecOps Engineer to work on a number of exciting products and projects, as they embark on a mission to rebuild the infrastructure of investments and advice in their space.

Performing as a seasoned DevOps Engineer who is security-focused, you will have the opportunity to shape and develop their cutting-edge platform and perform as a passionate security advocate – navigating complex challenges and approaching platform design pragmatically. You will leverage modern tools, languages, and platforms to contribute to efficient, secure, and scalable delivery of high-performance products.

This is a superb opportunity with a forward-thinking and expansive client, offering a truly autonomous role, with candidates being considered from a variety of unique and diverse backgrounds.

Key Skills & Experience

• Experience operating solutions within AWS, utilising Infrastructure-as-Code.
• Writing Infrastructure-as-Code to build secure infrastructure repeatedly.
• Implement security gates within CI/CD workflows to ensure secure deployments.
• Utilising modern tooling to shift security left.
• Collaborating closely with development teams to ensure security is addressed early in the development lifecycle.
• Review security best practice, remediating and implementing controls to ensure compliance.
• Make improvements to observability, building out the data infrastructure and maintaining and deployment of tooling.
• Suggesting improvements to processes and methodologies and challenging the status quo.
• Exposure to Audits/Compliance/Security frameworks.
• Knowledge of embedded security.
• Experience performing vulnerability scanning/penetration testing.
• Threat detection and prevention.
• Cloud account management (e.g. AWS Control Tower/GuardDuty/Config/Security Hub/CloudTrail).
• Identity management (e.g. SAML/OAuth/OIDC/AWS IAM).
• Patch management.

The above is not exhaustive. Please forward your CV to discuss this requirement in more detail to [email protected]