DevSecOps Engineer
Shieldpay
full-time
Posted on:
Location Type: Hybrid
Location: London • United Kingdom
Visit company websiteExplore more
About the role
- Instead of manually reviewing logs, you’ll be writing the scripts that automate threat detection
- Working within AWS and GCP to ensure our infrastructure is secure by design using Pulumi, CDK, or Terraform
- Building and maintaining the CI/CD security gates that allow our dev teams to move fast without breaking things
- Getting hands-on with vulnerability scanning, occasional internal "red-teaming," and incident response when things get interesting
Requirements
- A solid background in Computer Science
- You understand how systems talk to each other, how memory works, and why the "cloud" is just someone else's computer
- Automation First - you are proficient in at least one scripting language (Python, Go, JavaScript) and hate doing the same task manually twice
- You’ve spent significant time in AWS or GCP
- You know your way around IAM, VPCs, and serverless environments
- You understand CI/CD using GitHub Actions and how to bake security into the deployment process
- You’ve configured and managed Cloudflare, CloudFront and AWS WAF and know how to defend against common web threats at the perimeter
- Previous experience in Penetration Testing or CTF competitions is a 'nice to have'
- Exposure to Incident Response (knowing what to do when the alarm goes off) is a 'nice to have'
- Experience securing event-driven serverless workloads is a 'nice to have'
Benefits
- Flexible working options, such as flexible hours and hybrid work, to support our employees' work-life balance
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
scriptingPythonGoJavaScriptAWSGCPCI/CDvulnerability scanningPenetration TestingIncident Response
Soft Skills
automationproblem-solvingcommunication