Senior DevSecOps engineer

Remote-first role within the UK, with quarterly tribe days and occasional offsites/workshops in Bath, London or Edinburgh.

Seccl is the Octopus-owned embedded investment platform that’s on a mission to helping more people to invest – and invest well.

We’re B-Corp certified with an amazing product-market fit, impressive early traction and the potential to transform an outdated industry, for the better. We've been growing fast and will scale even faster over the next few years.

We’re also proud to be part of Octopus, the £multi billion group that's on a mission to breathe new life into broken industries, through companies like Octopus Energy, Octopus Investments and Octopus Money.

Check out the Seccl website for the latest on our products and our mission to shape the future of investments.

We’re looking for a Senior DevSecOps Engineer to join our DevSecOps team, reporting to the Engineering Manager (EM) and working closely with product engineering squads and platform teams. This role is hands-on and high-impact, focused on strengthening our pipelines, infrastructure, developer experience, and overall security posture. You'll take ownership of delivering secure-by-default tooling and automation that removes friction and accelerates shipping.

The DevSecOps team partners across the business to make the secure path the easy path - through clear guardrails, self-service tooling, great documentation, and CI/CD enablement. We’re a collaborative, remote-first group driving programmes that improve platform reliability, uplift engineering practices, and reduce operational risk. You’ll help us deliver these initiatives while raising the bar on cloud security and operational excellence.

• Design, build, and maintain automation, tooling, and integrations that improve developer workflows and embed security into CI/CD.

• Leading improvements across our cloud infrastructure, ensuring environments are secure, observable, resilient, and repeatable.

• Implementing and optimising security tooling (SAST, SCA, DAST, secrets management) to provide fast, actionable feedback to developers.

• Utilise Infrastructure as Code (Terraform) and CI/CD (GitHub Actions) to manage cloud resources, deploy platform components, and enforce consistent configuration.

• Enhancing observability across our systems with structured logging, dashboards, alerts, and SLOs that help teams understand and operate their services safely.

• Collaborating with product and platform teams to define secure patterns, participate in design discussions, provide guidance, and support incident response where needed.

• You have strong engineering experience in Node.js or another modern backend language, and you're comfortable building reliable, secure automation or platform tooling.

• You have solid experience with Infrastructure as Code (Terraform) and CI/CD (GitHub Actions), including secure secrets management and automated deployments.

• You understand AWS fundamentals - networking, IAM, ECS/Lambda, logging/monitoring - and can apply secure-by-design principles to cloud systems.

• You care deeply about observability and have hands-on experience implementing structured logging, monitoring dashboards, and SLOs.

• You collaborate well: you participate in design reviews, pair with engineers, and write documentation that makes life easier for the next person.

• Experience with cloud-native security patterns - such as least-privilege IAM design, secure network boundaries, or defence-in-depth controls

• You rely on a lot of top-down direction. Here, you’ll have a lot of freedom and ownership of your role, and you’ll be expected to shape your own progression

• You’re not comfortable working in a fast-paced environment. Our speed and scalability are what set us apart; you need to be able to act quickly and think on your feet

• You struggle to follow through on ideas. We value people who do what they say they will. If you care about something, you have the freedom here to make it happen

• You don’t like change. You’ll get on great here if you relish the ambiguity of rapid growth and are willing to embrace uncertainty

We offer a generous mix of benefits for the things that really matter to our people, including:

🌴 27 days holiday + bank holidays (some can be flexible) + day off on your birthday + three days (full time) per year for Dependant leave

💙 Two volunteering days per year

🌎 Option to work abroad for up to six weeks a year

🌟 Secclbrate - our recognition programme that offers a mix of flexible rewards including extra pay, additional holiday and increased learning budget

🏅 Length of service award – one month paid sabbatical at eight years

✅ 6% employer pension contribution, and life assurance

🏥 Private medical insurance with AXA Health

👪 Enhanced Parental leave

💻 MacBook and up to £500 home office set up budget

📖 £750 per person learning budget

🌻 Health and wellbeing initiatives including free therapy via Wellness Cloud, mental health support via Headspace

🌱 Strong financial wellbeing focus including access to Octopus Money, Octopus Share Incentive Plan and will writing offering via Octopus Legacy

🎁 Perkbox – Flexi-points giving you a range of discounts and perks including free weekly coffee, gym and retail discounts

🚲 Access to initiatives like Cycle to Work and Octopus Electric Vehicle Leasing

Our culture

We're proud to put people first, creating a culture where we truly listen to what matters most to them. Our transparent and inclusive environment encourages diversity of thought, challenge and experimentation.

Check out our Glassdoor page for the latest reviews or our LinkedIn for company updates and insights from the team.

Interviewing is a two-way thing, and we want you to have the time and opportunity to get to know us, as much as we are getting to know you. Our interviews are conversational, so come with questions and be curious. In general, you can expect the interview process to look a bit like this, (following an initial chat with one of our Talent team):

• Stage 1: Take-Home technical task

• We'll send you a brief technical challenge that reflects the type of work we do. To submit your work, we’ll invite you to a private GitHub repository where you can create a pull request with your changes. We respect your time, so we’ve designed the task to be completed within a 60-90 minute timebox, and you'll have a few days to complete it at your convenience.

• Please don’t worry about creating a perfect, production-ready solution. We use this task as a practical starting point for our technical conversation in the next stage and are most interested in your approach and thought process. 💬

• Stage 2: Technical Discussion & Task Review (60 minutes)

• Stage 3: Bar-raiser culture-based interview (45 minutes)

⏳ We’ll only close this role once we have enough applications for the next stage. Please submit your application as soon as possible to make sure you don’t miss out and you should expect to hear back from us within one to two weeks of applying.

🌈 Our aim is to build a diverse and inclusive company of awesome people, with unique skills, passions and experiences. All applicants will be considered for employment without attention to age, ethnicity, religion, sex, sexual orientation, gender identity, family or parental status, national origin, or veteran, neurodiversity or disability status.

If this sounds like your kind of thing, we encourage you to apply even if you don’t tick every box. We’d love to hear from you!

#LI-VS1 #LI-hybrid #LI-remote