Centerline Biomedical Logo

Centerline Biomedical

DevSecOps Engineer (London-based)

Posted 18 Days Ago
Be an Early Applicant
Remote
Hiring Remotely in London, Greater London, England
Mid level
Remote
Hiring Remotely in London, Greater London, England
Mid level
The DevSecOps Engineer will design and maintain secure CI/CD pipelines, implement infrastructure security, manage security monitoring and compliance, handle secrets management, and collaborate with cross-functional teams to enhance security practices and awareness.
The summary above was generated by AI

We are a leading trading platform that is ambitiously expanding to the four corners of the globe. Our top-rated products have won prestigious industry awards for their cutting-edge technology and seamless client experience. We deliver only the best, so we are always in search of the best people to join our ever-growing talent team. 


Are you passionate about safeguarding sensitive information and ensuring the integrity of digital assets? Do you thrive in a dynamic environment where your expertise in security systems management can make a tangible difference? Join us as a DevSecOps Engineer at capital.com!

Key Responsibilities:

  • Designing Secure CI/CD Pipelines: Develop and maintain automated CI/CD pipelines (preferable Gitlab) with a focus on security best practices, including SAST/DAST/SCA, vulnerability assessment
  • Infrastructure Security: Implement and maintain infrastructure as code using Terraform / CloudFormation / Ansible, ensuring secure configuration and compliance with industry standards and regulatory requirements
  • Security Monitoring and Incident Response: Set up and manage security monitoring tools to detect and respond to security incidents promptly. Develop incident response playbooks and collaborate with relevant teams to address security incidents effectively
  • Security Compliance: Ensure compliance with industry regulations (PCI DSS, GDPR, local financial regulation) and internal security policies. Conduct regular security assessments and audits to identify and address compliance gaps
  • Security Tooling and Automation: Evaluate, deploy, and manage security tools and technologies to automate security processes and enhance overall security posture. Continuously research and stay updated on emerging threats and security trends.
  • Secrets Management: Design, implement, and maintain robust secrets management solutions and processes using Hashicorp Vault and AWS SM / KMS
  • Collaboration and Knowledge Sharing: Work closely with development, operations, and product teams to embed security into the software development lifecycle. Provide security training and guidance to team members to increase awareness and promote a security-first culture. Maintain comprehensive documentation and playbooks for configuring, operating, and troubleshooting security solutions
  • Risk Management: Participate in risk assessments and threat modelling exercises to identify potential security risks and vulnerabilities. Develop and implement risk mitigation strategies to minimise exposure to security threats.

Requirements:

  • Proven experience in DevOps, software engineering, or related roles, with a focus on security
  • Hands-on experience with cloud platforms (AWS, Azure, GCP), containerisation technologies (Docker, Kubernetes), configuration management (Ansible)
  • Proficiency in scripting and automation using languages such as Python or Bash
  • Strong understanding of security principles, protocols, and standards (e.g., OWASP Top 10, NIST Cybersecurity Framework, CIS Benchmarks)
  • Experience with security testing tools (e.g., Tryvi, Prowler, ScoutSuite, SonarQube, OWASP ZAP, Nessus) and vulnerability management processes
  • Excellent communication and collaboration skills, with the ability to work effectively in a cross-functional team environment
  • Knowledge of financial industry regulations and compliance requirements is a plus
  • Demonstrated ability to adapt to a fast-paced, dynamic environment and drive initiatives independently

What you will get in return:

  • You will join the Company, that cares about work and life balance
  • 25 days annual leave
  • Hybrid type of work (3 days/week from office)
  • Private Medical Insurance for you and your family after probation period
  • Death In Service
  • EAP
  • Season Ticket Loan after probation
  • Cycle to Work after probation
  • Modern and outstanding equipment
  • Annual bonuses
  • Employee referral program
  • Full annual performance assessment.

Be a key player at the forefront of the digital assets movement, propelling your career to new heights!

Join a dynamic and rapidly expanding company that values and rewards talent, initiative, and creativity.

Work alongside one of the most brilliant teams in the industry.


Top Skills

Bash
Python

Similar Jobs

21 Days Ago
8 Locations
Remote
4,900 Employees
Senior level
4,900 Employees
Senior level
Fintech • Payments
The Software Development Engineer provides technical leadership to develop and maintain cloud-native platforms and promote DevOps practices. Responsibilities include collaborating with stakeholders, delivering solutions with Infrastructure as Code, and improving software quality while fostering innovation in automation and scalability.
Be an Early Applicant
10 Hours Ago
United Kingdom
Remote
10,000 Employees
Mid level
10,000 Employees
Mid level
Cloud • Information Technology • Sales • Security • Cybersecurity
The Analyst I position involves conducting security alert monitoring, incident response, malware analysis, and developing incident detection processes. Analysts will operate within a virtual SOC, responding to incidents across various platforms and effectively communicating findings to customers.
Be an Early Applicant
10 Hours Ago
United Kingdom
Remote
10,000 Employees
Junior
10,000 Employees
Junior
Cloud • Information Technology • Sales • Security • Cybersecurity
As an Analyst I in Falcon Complete, you will monitor and analyze security alerts, conduct incident response across various platforms, perform malware analysis, and enhance detection and remediation processes. Your role involves advising clients through communications and improving security practices.

What you need to know about the London Tech Scene

London isn't just a hub for established businesses; it's also a nursery for innovation. Boasting one of the most recognized fintech ecosystems in Europe, attracting billions in investments each year, London's success has made it a go-to destination for startups looking to make their mark. Top U.K. companies like Hoptin, Moneybox and Marshmallow have already made the city their base — yet fintech is just the beginning. From healthtech to renewable energy to cybersecurity and beyond, the city's startups are breaking new ground across a range of industries.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account