Senior DevSecOps Engineer, London, Hybrid, Up to £90k base, Fintech

Senior DevSecOps Engineer, London, Hybrid, Up to £90k base, Fintech

We are looking for a Senior DevSecOps Engineer to be a key driver in integrating security into every phase of our Software Development Lifecycle. You will join a high-impact team, responsible for securing a highly available, multi-tenant platform built on GCP and Kubernetes.

This role requires a proactive and automated approach to security. You will be laying down the foundational security posture, automating compliance checks, and ensuring we not only meet but exceed the security requirements necessary for regulated financial services.

Key Responsibilities

• Own Security Tooling: Select, integrate, and maintain security tooling within our environments and CI/CD pipelines.
• Engineer Security Guardrails: Design, implement, and enforce automated security guardrails and policies across our cloud estate and CI/CD pipeline.
• GCP Security: Harden and secure our Google Cloud Platform environment, including IAM policies, network security, and resource configuration management.
• Compliance Automation: Work with compliance and governance teams to translate requirements into automated, verifiable infrastructure and deployment practices.
• Vulnerability & Patch Management: Automate and manage the end-to-end process for identifying, triaging, and remediating security vulnerabilities in infrastructure, applications, and third-party dependencies.
• Developer Empowerment: Build and maintain 'golden path' templates for secure service deployment, enabling feature teams to ship code confidently and safely.
• Incident Response: Contribute expertise to the security incident response team, helping to swiftly manage and resolve security events.

Essential Skills & Experience

• Deep, practical experience designing, managing, and securing high-availability infrastructure within GCP.
• Proficient in API security — reviewing, providing patterns, and upskilling engineers.
• Expert knowledge of Kubernetes (GKE) — network policies, container runtime security, and secrets management.
• Solid Infrastructure as Code (IaC) skills using Terraform or OpenTofu.
• Hands-on experience with security tooling such as Aqua Security, Falco, Prisma Cloud, or similar CSPM/CWPP/CNAPP solutions.
• Proficient in at least one scripting/development language: Python, Golang, or Shell.
• Proven ability to build secure CI/CD pipelines with mandatory security checks (GitLab CI, GitHub Actions).

Desirable

• Experience with FinTech-related certifications or frameworks: SOC2, ISO 27001, PCI DSS, DORA, or similar regulated environments.
• Relevant certifications: Google Cloud Professional Security Engineer, CKS (Certified Kubernetes Security Specialist), or CISSP.