DevOps Engineer – Security Engineering (Hybrid, London)

About the role

We are seeking a DevOps Engineer to join the Security Engineering team of a leading investment manager and trading firm in London. The role is hybrid and focuses on building and operating secure, scalable infrastructure that supports high‑frequency trading and asset management activities.

Key responsibilities

• Design and enhance CI/CD pipelines and support GitOps workflow adoption.
• Build internal tools and automation for platform and data‑driven initiatives.
• Collaborate with security engineers to embed controls such as SAST and DAST into development pipelines.
• Support and improve security tooling, including secrets management platforms like Vault.
• Improve observability through enhanced monitoring, logging, and alerting across infrastructure and security systems.
• Automate operational and security processes to reduce manual effort and risk.
• Manage and secure containerised environments (Kubernetes, Docker) with strong runtime protections.
• Contribute to incident response and troubleshoot production or deployment issues.
• Continuously improve system reliability, scalability, and security posture in a high‑availability environment.

Required profile

• Strong coding or scripting skills with a passion for automation.
• Experience with CI/CD pipelines and modern deployment practices.
• Hands‑on experience using infrastructure‑as‑code tools such as Terraform or CloudFormation.
• Solid experience working with Kubernetes and containerised environments.
• Good understanding of Linux systems and networking fundamentals.
• Experience with cloud platforms (AWS, Azure, or GCP), preferably in complex or hybrid settings.
• Understanding of security fundamentals including secrets management, access control, and vulnerability management.
• Proactive problem‑solving mindset and ability to work independently.
• Strong communication skills and ability to collaborate across engineering and security teams.

Required skills

• Terraform
• CloudFormation
• Kubernetes
• Docker
• Linux
• AWS
• Azure
• GCP
• Vault
• SAST
• DAST
• CI/CD
• GitOps
• Monitoring
• Logging
• Alerting
• Scripting