We are looking for a passionate, experienced, and curious DevSecOps Engineer with proven expertise in securing production-level financial systems to take an active part in designing, implementing, and maintaining secure, compliant, and robust infrastructures in a highly regulated environment. This role focuses on embedding security into development and deployment workflows while supporting governance, risk, and compliance (GRC) efforts.
Key Responsibilities:
Design, deploy, and manage advanced security solutions to protect cloud and IT environments supporting high-value financial transactions.
Conduct and facilitate remediation of findings from web application penetration tests and cloud infrastructure security scans.
Integrate security best practices into CI/CD pipelines, infrastructure automation, and containerized microservices orchestration.
Proactively monitor and enhance security posture, addressing vulnerabilities and emerging threats to ensure robust protection.
Collaborate with Engineering, DevOps, and Operations teams across New York, London, and Tel Aviv to embed security into development and operational workflows.
Support responses to customer security questionnaires from Tier 1 financial institutions, ensuring accurate and timely input.
Maintain and improve infrastructure automation and configuration management tools with a security-first approach.
Support, enhance, and maintain production-level observability with a focus on security monitoring.
Contribute to updating and improving our DevSecOps technology stack: AWS, Operating Systems, Kubernetes, Helm, Terraform, Python, Jenkins, and more.
Participate in mutual SOC 2 Type II efforts, assisting with evidence collection and control implementation as part of a collaborative team.
Requirements: Who You Are:
At least 4 years of experience as a DevSecOps Engineer or in a similar role focused on cloud and IT security.
Proven experience in delivering and communicating complex security solutions to Engineering and Management alike.
Additional industry experience in R&D, QA, or IT security a plus.
Team player with excellent communication skills, collaborating effectively with global teams and stakeholders.
Hands-on experience in securing critical production systems and ensuring business continuity.
Expertise in corporate information security practices, including identity management, access controls, and vulnerability management.
Experience with compliance frameworks (e.g., SOC 2, ISO 27001, GDPR) and supporting audit processes.
Broad understanding of security and networking principles.
Familiar with Cloud (Ideally AWS) Security best practices & constraints.
Proficient in at least one scripting language (e.g., Python, Bash) for automating security workflows.
Familiar with modern observability tools, with an emphasis on security monitoring.
Familiar with server system administration with a focus on security hardening.
Strong interpersonal communication and written skills in English a must.
Exceptional troubleshooting and problem-solving skills in high-pressure environments.
Self-motivated and able to thrive in a fast-paced, regulated environment.
Nice to Have:
BS in Computer Science, Information Security, or a related field, or equivalent experience.
Familiarity with security tools like AWS Security Hub, Qualys, or Nessus for scanning and remediation.
Familiarity with Infrastructure as Code (IaC) on a cloud provider (preferably Terraform and AWS).
Experience with Helm Charts, Argo CD and Kubernetes for secure container management and orchestration.
Experience with CI/CD integrations, incorporating security into SCM and code review tools.
Experience with cloud cost optimization from a security perspective.
Familiarity with database security best practices and troubleshooting.
This position is open to all candidates.