DevSecOps Engineer

DevSecOps Engineer – Fintech SaaS Company (Hybrid)

Hybrid model (2 days from home)

Employment Type: Full-time

A successful fintech company with a complex AI-based SaaS product built on AWS is looking for a DevSecOps Engineer to join their platform engineering team. This is a standalone role within the DevOps team, reporting to the DevOps Team Lead and working closely with the information security team.

As a DevSecOps Engineer, you’ll play a critical role in defining and strengthening the company’s security posture. You’ll lead and contribute to infrastructure and security-related development, manage third-party integrations, and ensure compliance with best practices in cloud and application security.

Responsibilities:

• Develop and maintain a clear overview of production security, identifying improvement areas.
• Prioritize and implement security enhancements based on risk assessments and best practices.
• Lead and contribute to new platform feature development with a focus on secure architecture.
• Guide and review infrastructure code for security vulnerabilities.
• Integrate and manage security tools (e.g., CSPM, EDR, patching tools).
• Perform regular infrastructure vulnerability assessments and manage patching policies.
• Handle and investigate security incidents, implement mitigation and post-mortem processes.
• Develop internal automation tools to support secure infrastructure development.

Requirements:

• 2+ years of experience as a DevSecOps Engineer or in a similar role – mandatory
• 2+ years working with cloud infrastructure (preferably AWS) – mandatory
• Proficiency in network security tools (e.g., EDR, WAF, Firewalls) – mandatory
• Experience with IaC tools like Terraform / Ansible / CloudFormation – mandatory
• Hands-on experience with Kubernetes and containerized environments – mandatory
• Programming/scripting skills in Go / Python / Bash / PowerShell – mandatory
• Strong understanding of cloud security principles, identity management, and infrastructure design.

Nice to Have:

• Experience with multi-account AWS landing zones
• Familiarity with certificate management, secrets handling, and key stores
• Experience with vulnerability scanning and endpoint protection

What We’re Looking For:

• A strong communicator with the ability to collaborate across technical and non-technical teams.
• Analytical thinker and problem solver with a proactive mindset.
• Someone who takes ownership and thrives in a fast-paced, high-impact environment.
• Passionate about DevSecOps and staying ahead of security trends.
• Experience mentoring peers on security best practices is a plus.

About the Team:

• Hybrid work model – 2 days from home
• Company size: ~350 employees globally, ~70% based in Israel
• This is a solo DevSecOps function working under the DevOps team and closely with security.