Senior DevSecOps Engineer (Cybersecurity)

TL;DR

Senior DevSecOps Engineer (Cybersecurity): Responsible for embedding automated security controls and guardrails into CI/CD pipelines, cloud platforms, and developer workflows with an accent on automation, low-friction developer experience, and high-quality security feedback loops. Focus on building and operating internal security tooling, integrating security checks, and implementing policy-as-code guardrails.

Location: London, UK (Onsite)

Company

hirify.global is a payment and software service provider, headquartered in London, serving small, local businesses across Europe.

What you will do

• Integrate and maintain security checks (SAST, DAST, SCA, secrets scanning) into CI/CD pipelines.
• Design, build, and operate internal security services, APIs, CLIs, and automation workflows.
• Implement and maintain policy-as-code guardrails for IaC, Kubernetes, and cloud configurations.
• Support vulnerability scanning platforms and security telemetry pipelines.
• Champion secure engineering practices and drive enablement activities across the organization.
• Leverage automation and AI to reduce manual toil and enrich security findings.

Requirements

• 5+ years in security engineering, DevSecOps, or platform engineering with significant security integration experience.
• Hands-on experience embedding security into CI/CD (SAST/DAST/SCA, container scanning, secrets detection).
• Proficiency with CI/CD platforms (e.g., GitHub Actions, GitLab CI, Jenkins) and IaC (e.g., Terraform).
• Strong software engineering and automation skills (Python, Go, Bash, or similar).
• Deep cloud-native experience (AWS preferred), including IAM, networking, and logging.
• Experience designing and implementing policy-as-code and security guardrails.

Nice to have

• Experience in fintech or regulated environments.
• Familiarity with WAF/DDoS tools, Zero Trust, and vulnerability management programmes.
• Exposure to SOAR or security automation platforms.
• Relevant certifications (AWS Security, Kubernetes Security, GIAC, CISSP, etc.).

Culture & Benefits

• High-energy and connected culture with continuous learning opportunities.
• Supportive community proud to serve the mission of helping small businesses.
• Comprehensive benefits package.
• Commitment to extreme ownership and pragmatic, delivery-aware approach.
• Low-ego, collaborative, and impact-driven work environment.
• AI-first mindset, actively using automation and AI to improve security.