Senior DevSecOps Engineer

Who we are looking for

We're looking for a Senior DevOps Engineer with a solid engineering background to enhance our existing team. We’re trusted by banks and other security conscious organisations to handle sensitive data, so the security and stability of our operations is paramount.

You’re not afraid to get your hands dirty, wrangling unruly Lambda functions, building Terraform configurations, and helping to design and implement new infrastructure to support a major new piece of service functionality.

You have:

• Experience working in an agile, engineering environment.
• Minimum of 5 years building and managing lifecycle of secure, highly available and robust web applications & integration services in AWS.
• Knowledge of setting up, securing, managing and monitoring containerised services in AWS ECS (and ideally EKS).
• A deep understanding of Terraform.
• An understanding of core AWS networking primitives
• Extensive experience with git version control, git branching and merging
• Experience in building and defining build and release pipelines using Github Actions or similar CI/CD platform
• Strong scripting skills with Python, Typescript and Bash
• Experience using Prometheus and Grafana for system monitoring
• Extensive experience working with Linux environments
• Relevant professional certifications from industry organisations. AWS DevOps or Solutions Architect Certification required.

Nice to haves

• Experience with Cloudflare
• Experience using AI tooling to enable faster development of services
• You have an interest in platform engineering and how it relates to developer experience
• IaC tooling such as AWS Clouformation and/or AWS CDK.

You will:

• Be an active participant in our regular DevSecOps rituals (standup, grooming, retro, etc).
• Collaborate with members of the team and product owners to solve operational issues and develop enhancements such as automation
• Control and manage the end-to-end deployment processes, working with the dev team to implement and maintain CI/CD practices
• Collaborate with team members on continuous improvement to both the Security & DevOps pipelines and processes, and to the Information Security tools, services, and processes
• Work closely with senior engineering staff on systems and security architecture
• Seeking to continuously improve the service and technology stack
• You will work closely with the DevSecOps Lead, VP of Engineering and CTO.
• Participate in on-call rotation.

What success looks like

In your first month, we will give you the full induction so that you understand the company culture, the product, the codebase and your team. We will ensure that you have all the tools that you need to be successful. We’ll aim to have you reviewing your first deployment in the first 2 weeks.

From there you’ll work with the existing team to review the current infrastructure with a view to adding your own contributions.

By 3 months you’ll have added your own stamp to the infrastructure, ideally working on furthering our security posture through the tightening of existing controls, or implementing new policies and procedures.

By 6 months your work will have made a significant improvement to the overall security landscape within Frankie, as well as have implemented further enhancements of the release pipeline and service infrastructure.