[Hiring] DevSecOps Engineer @Entersekt

Role Description

The DevSecOps Engineer's objective is to integrate security controls and maintain a highly available cloud infrastructure. You will ensure our platform remains secure, scalable, and compliant with relevant security standards (including SOC2 and PCI-DSS) by focusing on the running, securing, and monitoring of services in production.

• Key Objectives:
• Production Excellence: Operate production environments with a "security-first" mindset, monitoring both availability and potential threats.
• Infrastructure as Code: Build and maintain secure IaC to manage platform scaling and consistency.
• Continuous Compliance: Ensure the success of security audits through automated compliance checks and rigorous evidence collection.
• Culture & Collaboration: Bridge the gap between development, security, and operations to foster a robust DevSecOps culture within the wider Engineering department.

• Responsibilities:
• Infrastructure Management: Manage core AWS services (EKS, RDS, S3, Lambda) with a focus on encryption, least-privilege access, and service reliability.
• Monitoring & Incident Response: Develop and refine strategies for monitoring system health and security events using tools like OpenSearch, Prometheus, and Grafana.
• Compliance & Auditing: Ensure all AWS environments meet relevant security standards. Implement and monitor "Policy as Code" using Terraform to automate audit-readiness.
• Deployment & Security Automation: Maintain configurations for automation tools, secure deployments, and vulnerability scans. Work with standardized SDLC tools to ensure consistent delivery to production.
• Cross-Team Collaboration: Work closely with the teams and Software Engineers to ensure application deployments are successful, working as intended, and compliant with security standards.
• Technical Mentorship: Provide leadership and guidance on secure infrastructure practices to other Software Engineers across the organization.

This position involves on-call responsibilities: Responding to operational incidents when necessary. We aim to minimize unnecessary paging and build fault-tolerant systems that reduce operational load.

Qualifications

• 5 years+ in a DevSecOps, SRE, or Cloud Engineering role, preferably in fintech or a highly regulated environment.
• Deep expertise in AWS (specifically IAM, EKS, VPC, S3, RDS, and EC2).
• Strong understanding of TCP/IP, DNS, firewalls, and security tools (e.g., WAF, KMS, Shield).
• Extensive experience with Docker and Kubernetes (EKS), including administration and deployment via Helm.
• Proficiency in Terraform for managing complex cloud environments.
• Experience securing and tuning PostgreSQL, MySQL, or MariaDB.
• Experience with GitLab CI, ArgoCD, or Atlantis.
• Proficiency in Python or Bash for automation tasks.

Personality Attributes

• Ability to thrive under the pressure of audit deadlines and production incidents.
• A strong preference for automated solutions over manual intervention.
• Strong communication skills for working with distributed teams across multiple time zones.

Benefits

• Exposure to cutting-edge technology.
• Colleagues who are leaders in their fields.
• An awesome working environment that includes flexible hours and remote work.
• Plenty of growth opportunities.

Company Description

Entersekt is a leader in digital banking fraud prevention and payment security, including mobile authentication, mobile app security, and 3D Secure authentication for issuers, acquirers, and payment networks. We offer highly scalable products with a track record of success across multiple continents.

We exist to create a world where everyone can transact digitally without fear or compromise. Currently, we protect the digital transactions of over 210 million active users on our platform and hold 120 active patents that recognize innovation in digital security, payments, and user experience.

Entersekt offers customers secure authentication and digital payments experiences that remove unnecessary friction. We have a diverse product portfolio and aggressive roadmap that positions the company well to sustain competitive advantage as it expands globally with emphasis on North America and European markets.