🛠 Tech Stack

💼 About This Role

You'll embed automated security controls into CI/CD pipelines and cloud platforms, building internal security tooling that enables secure delivery at scale. You'll partner with platform, cloud, and AppSec teams to deliver low-friction security capabilities across the engineering organization.

🎯 What You'll Do

• Integrate and maintain security checks (SAST, DAST, SCA) into CI/CD pipelines.
• Design and operate internal security services, APIs, and automation workflows.
• Implement policy-as-code guardrails for IaC, Kubernetes, and cloud configurations.
• Champion secure engineering practices and drive enablement activities.

📋 Requirements

• 5+ years in security engineering, DevSecOps, or platform engineering with security integration.
• Hands-on embedding SAST/DAST/SCA into CI/CD (GitHub Actions, GitLab CI, Jenkins).
• Proficiency in CI/CD platforms and IaC (Terraform).
• Strong software engineering skills in Python, Go, or Bash.

✨ Nice to Have

• Experience in fintech or regulated environments.
• Familiarity with WAF/DDoS tools, Zero Trust, or SOAR platforms.
• Relevant certifications (AWS Security, Kubernetes Security, GIAC, CISSP).

🎁 Benefits & Perks

• 🕒 Flexible working hours
• 🏥 Health Insurance
• 🧘 Mental health support via MyFitness
• 🏖️ 25 days annual leave plus bank holidays
• 🍕 Friday lunch in the office