DevSecOps Engineer
Remote · London, England, United Kingdom or GB
Job Summary
DevSecOps Engineer responsible for hardening AWS and Kubernetes perimeters, managing vulnerability programs across AWS/Kubernetes, building security detections, and coordinating external penetration tests. Own identity and secrets across Okta, Vault, and AWS IAM (SSO/SCIM rollouts, access reviews) and manage the InfoSec/PCI DSS programme end-to-end — including quarterly reviews, change documentation, and audit prep with partners. Requires hands-on AWS security skills, Terraform, runbook authoring, and a track record in coordinating external pen tests; PCI DSS v4.0 experience is a plus. Flexible working model with work-from-home setup in London, UK.
Required Qualifications
- Strong AWS security skills (IAM, SCPs, VPC, EKS, ECR, GuardDuty, KMS)
- Comfort writing and reviewing Terraform
- Experience with at least three of: Datadog (CSM), Cloudflare WAF, HashiCorp Vault, Okta, Kubernetes security, CrowdStrike or equivalent EDR
- Track record coordinating external penetration tests — scoping, enablement, remediation
- Bias for automating compliance tasks, especially evidence-gathering for recurring audits/reviews
- Ability to write runbooks that on-call engineers can follow at 03:00
- Hands-on experience with PCI DSS v4.0 controls in payments/financial services environment (a plus)
- Ability to work in fast-paced, evolving startup environment
- Ability to work independently on ambiguous challenges and drive solutions
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.