DevSecOps Engineer

This is a fantastic opportunity to join Luminance, the pioneer of Legal-Grade™ AI for enterprise. Backed by internationally renowned VCs and named in both the Forbes AI 50 list of ‘Most Promising Private AI Companies in the World’ and Inc. 5000’s ‘Fastest Growing Companies in America’, Luminance is disrupting the legal profession around the globe.

We are hiring a hands-on DevSecOps Engineer to strengthen Luminance’s security engineering capability and embed security into our platform and development workflows. The DevSecOps Engineer will work across Platform (SRE), IT Infrastructure, and Security to implement secure controls, automate processes, and improve overall risk management practices. We are looking for someone who enjoys solving practical security engineering problems and building automation that makes secure development the default.

The successful candidate will focus on automation, control implementation, cloud security hardening, and delivering measurable improvements in our security posture.

Responsibilities

Security Engineering & Hardening

• Improve cloud security posture (e.g. AWS Security Hub uplift, IAM optimisation, least privilege enforcement)
• Implement and maintain secure configuration baselines across infrastructure
• Support remediation of identified risks through structured improvement initiatives

DevSecOps & Automation

• Embed security controls into CI/CD pipelines (SAST, DAST, dependency scanning, container scanning)
• Build automation to reduce manual compliance evidence collection
• Implement Infrastructure-as-Code guardrails and policy-as-code controls
• Improve secrets management and access governance practices

Vulnerability & Control Management

• Support vulnerability triage, prioritisation, and remediation tracking
• Collaborate with engineering teams to resolve findings pragmatically
• Improve detection quality and reduce false positives across monitoring tools

Resilience & Monitoring

• Enhance logging, alerting, and incident readiness
• Support security playbooks and response preparedness
• Contribute to continuous security improvement initiatives

• Proven experience in DevSecOps, Cloud Security Engineering, or Infrastructure Security
• Strong hands-on experience with CI/CD pipelines and automation tooling
• Deep experience securing AWS (preferred) or Azure/GCP environments
• Practical experience implementing and tuning security scanning and vulnerability management tools
• Strong scripting/automation skills (Python, Bash, etc.)
• Experience implementing Infrastructure-as-Code (Terraform, CloudFormation, etc.)

Desirable Experience

• Container and Kubernetes security
• Experience in compliance-driven environments (ISO 27001, SOC 2, NIST)
• Experience building policy-as-code or automated guardrails
• Exposure to incident response and threat detection engineering