DevSecOps Engineer
Copenhagen , London , Berlin , Montreal , Stockholm , Madrid , Remote
Pleo
Power to your People. Mit Pleos smarten Firmenkarten & unserer Komplettlösung für alle Unternehmensausgaben. Vereinfachen Sie Ihre Buchhaltung. Pleo it.Here at Pleo, we're growing with Sonic.gif speed, which is amazing don't get me wrong, but the larger we become, the bigger the temptation for the less lawful side of society. As a FinTech business, we handle money for our customers. So this is not just about protecting a company from a password leak that allows malicious actors to post not-funny cat videos to your SoMe account - this is about protecting our customers' money. Well, this is where you (hopefully) come in!
This role focuses solely on the security side. We are talking about both the security side of our application but also ensuring our internal DevOps practices won't come back and bite us (to put it mildly). We are happy to have strong individuals and teams when it comes to their domain's security side, but we feel that as we scale this alone won't be enough. What we're looking for is someone to be part of owning all of these - and to bring an overview and abstraction level when it comes to addressing the topic of security itself.
To give you a better idea, here are some tasks you might do as a DevSecOps / Cloud Security Engineer at Pleo.
- Help our engineering teams build secure solutions by automating guardrails within our pipeline. You’ll implement Infrastructure as Code Security Policies and Benchmarks & Rules and automatically remediate issues and if unfeasible flag developers for remediation;
- Deep dive into various security subjects related to hardening our Kubernetes & AWS infrastructure at Pleo. Then write summaries and give your recommendation on actions if any;
- Working closely with our SRE team to create automated continuous integration (CI) and continuous delivery (CD) for security checks;
- Be a core contributor in projects closely related to security automation.
Just to make it absolutely clear, we're not building a security team to take over all security-related tasks. We're building a team of specialists that support the other teams through platform building, investigations, and coaching.
There will be a lot of flexibility in this role depending on your interests and skills, but as a Staff/Senior you will be expected to:
- Help plan, prioritize, and manage our pipeline security roadmap.
- Take lead on planning and executing projects related to our overall security objectives.
- Think about how we balance securing various data classifications while providing access and meeting the needs of the company.
And sure, this may all sound that we are looking for a mythical all-rounded cloud security focus but we are not delusional. We'd expect that you are highly skilled in certain areas (ideally cloud application hardening) and not in the whole security-verse. What's important though, is that you have a passion for the field, you are willing to expand your knowledge, and that you enjoy the responsibilities that come along with such a role.
If you have been smiling in excitement while reading these, we probably want to meet you, click apply.
Your profile
- You recognize that communication is a core part of your job as a security engineer at Pleo.
- You are eager to discuss complicated cloud security topics with technical colleagues.
- You are pragmatic in your approach to security - a door that no one can unlock is very secure, but it's also no longer a door.
- You agree security isn't black magic but is a matter of understanding complex systems and applying creative thinking to interesting problems.
- You love learning new things and enjoy working with problem areas you aren't an expert in (yet).
- You are honest and unafraid to state things exactly like they are - acknowledging and communicating what's broken is the first step to fixing things.
The nitty gritty skills
- You are comfortable with at least one programming language and have foundations with application development.
- Experience with fully automating CI/CD pipelines security checks end-to-end, from code commits to production;
- Solid experience in hardening, configuring and troubleshooting Kubernetes and AWS environments;
- Cloud Service Knowledge. You understand how to secure all the "meshy" things from sidecars, microservices to service mesh and you are familiar with the cloud shared responsibility model. You're comfortable balancing the tradeoff decisions with regard to cost, security, and deployment complexity.
Nice to have skills
- Java or Kotlin proficiency and experience with securing applications running on JVM.
- Experience with PCI DSS, GDPR, or PSD2 technical requirements such as proper network segmentation and authorization mechanism.
Non-requirements
We don't really care about certificates, degrees, and all that jazz. However, we won't penalize you for talking about your super relevant degree in information security or showing off your brand new certificate. We also don't need you to have x years of experience in information security, but would of course love for you to tell us about any experience that you think is relevant for the job.
Your colleagues say that you
- Have an aversion to human in the loop processes
- Could easily be a hacker in your free time
- Never forget to lock your laptop
- Dropped an unattended USB-drive and waited for someone to plug it in and inadvertently realize they have a new keyboard that had specific ideas in mind..
Show me the benefits
- Your own Pleo card (no more out-of-pocket spending!)
- Ability to work remotely (anywhere between the east coast of the Americas to European timezones)...
- ...or onsite if you want to (Copenhagen, Stockholm, London, Madrid, Berlin, Lisbon)
- Lunch is on us - whether you are working remote or at one of our offices 🍜
- Private Health Insurance to ensure you’re fit of body and mind to do your best work
- Trips abroad for team camps. We’ve just been to Costa Brava, in Spain - we’d love to see you at the next one!
- 25 days holiday per year + your local public holidays
- Paid parental leave - we want to make sure that we're supportive of families and help you feel that you don't have to compromise your family due to work 👶🏻
- €2500 annual Flex Benefits budget (maybe you want to buy additional holidays, pay for the gym, book a professional coach or pay part of your MBA - completely up to you!). We know everybody prioritises different benefits. So, our Flex Benefits package lets you choose what best suits you. Ask us about what we offer, we’ll be happy to outline more!
Why work here?
Working at Pleo means you're working on something very exciting: the future of work. Through fintech we've seen a way to impact how people work; we think company spending should be delegated to all employees and teams, that it should be as automated as possible, and that it should drive a culture of responsible spending. Based on some pretty amazing Series C-round investment in 2021 we think we're onto something big.
So, in a nutshell, that's Pleo. Today we are a 500+ team, from over 54 nations, sitting in our Copenhagen HQ, London, Stockholm, Berlin, Madrid, Montreal, or Lisbon offices – and quite a few full-time remotes in 22 other countries! Being HQ'd out of Copenhagen means we're inspired by sensible things like a good work-life balance. If you don't work in the office with us we'll help you get up the best remote setup possible, and will fly you in for our amazing team camps ✈️
Things to look up about us
Sometimes, we win awards 🤩 🏆
If you want to know how we hire company-wide, there's a post on our blog.
Or have a sneak peek into what happens when get together for Pleo Team Camp on our YouTube 👈🏾
Check out what we think about the realities of working remotely on our blog.
No one says it quite like our customers. Hear what they have to say this week on Trustpilot.
Also, check out Glassdoor if you'd like to hear about us from other people.
PS. we treat all candidates equally: If you are interested please apply through our application system - any correspondence should come from there! Our lovely support isn't able to pass on any calls/ emails our way - and this makes sure that the candidate experience is smooth and fair to everyone 🙂
When you submit the application the personal data in your application will be collected by Pleo as a data controller. Your personal data will be processed for the purposes of managing Pleo’s recruitment related activities which includes setting up and conducting interviews and tests for applicants, assess and review such candidates and similar activities needed in the recruitment and hiring process. Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider engaged by Pleo to help manage its recruitment and hiring process. For more information about how Pleo processes personal data and information about your rights etc, please see Pleo’s Privacy Policy (link to: https://pleo.io/legal-terms/latest/privacy-policy/pleo-privacy-policy-en.pdf).
By submitting your application, you consent to Pleo processing your personal data for recruitment purposes and to store such personal data for up to 12 months, unless we receive a request of erasure of the data from you, in case Pleo would like to contact you regarding future job openings.
Tags: Automation AWS C CI/CD Cloud DevOps DevSecOps FinTech GDPR Java Kotlin Kubernetes Microservices PCI DSS Privacy PSD2
Perks/benefits: Career development Flex vacation Gear Health care Parental leave Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs