DevSecOps Engineer

DevSecOps Engineer

Consortia has partnered with an innovative Fintech company at the forefront of transforming the financial services industry. This dynamic environment offers you a unique opportunity to be part of a forward-thinking organisation that values innovation, collaboration, and growth. By joining this team, you can significantly influence the company’s vision and direction. The company is deeply committed to fostering a culture where your ideas and expertise will shape its future, making it an exciting place for those who thrive on making an impact.

As the first Senior DevSecOps Engineer, you will be pivotal in integrating security and compliance into the DevOps process. This role is ideal for someone with extensive experience and comfort in a broad DevSecOps Subject Matter Expert (SME) capacity. Unlike traditional DevOps roles, this position allows you to own the technical direction fully, make key decisions regarding tooling and technology, and ensure system uptime. You will collaborate closely with the engineering team and engage with stakeholders across the business, including potentially client-facing interactions. Your responsibilities will also include leading discussions on AWS cost optimisation and infrastructure strategy, focusing on embedding best practices in a highly regulated environment. This is a unique opportunity to shape both the technical and strategic aspects of the company’s infrastructure

The ideal Senior DevSecOps Engineer will have senior-level experience in similar roles, demonstrating a solid track record of success and the ability to take full ownership of technical projects. You should be highly proficient with AWS, particularly in well-architected account setups, shared VPCs, and adherence to best practices. A deep understanding of compliance and governance is essential, ISO27001 and FCA-regulated environments would be a bonus. You should also have strong skills in automation, particularly in maintaining and enhancing processes using Terraform.

As the Senior DevSecOps Engineer, You will create and manage infrastructure for serverless environments such as Lambdas, Docker, RDS, Aurora serverless, and event-driven architectures like Kafka. Your role will also include developing and maintaining CI/CD pipelines using tools like Jenkins, ensuring that deployment processes are secure and efficient. Given the highly regulated environment, cloud security will be a critical focus, with responsibilities including data encryption and preventing any potential data leakage. You will develop and maintain Standard Operating Procedures (SOPs) to ensure compliance and operational efficiency.

You will work extensively with Terraform for infrastructure management, with the possible involvement of Terragrunt. Monitoring will be handled through Datadog, while PagerDuty will be used for incident management. You will also manage endpoint device detection using Google Workspace and JumpCloud, particularly in environments without a dedicated IT department. Additionally, you will handle some aspects of GCP, particularly for crucial management and backup policies, with backups stored in S3. Managing access control will involve using 1Password, in partial collaboration with HR. You will also be responsible for automating processes using GitHub Actions.

Location: London (Hybrid - 2 days onsite p/w)

Consortia operates as a specialist recruitment agency, with consultants focused on global roles within UX, Product, Data, and Engineering markets. If the " Senior DevSecOps Engineer” role doesn't align with your preferences, but you are open to exploring other opportunities, feel free to connect with us for a discussion.