Senior DevSec Engineer

Security & Infrastructure London, United Kingdom


Description

Who are we?

We want to help small businesses win. That’s why we’re here. 

We connect small business owners to investors – to create jobs, support local communities and power economies – because we believe that people are made to do more. And we want to help realise their goals. 

So, we created the leading online marketplace for small business loans. Our investors have lent £13.7 billion in 171,000 loans to 122,000 small business owners. In a single year, we unlocked 100,000 jobs and contributed £7.2 billion to the UK economy. There’s never been a better time to join!

Be part of the team that changes everything. Let’s build the place where small businesses can get the funding they need to win and leave a legacy behind, forever. 

This role sits within the Tech Security teams. The drivers behind our platform – brilliant people working together to create, code, and build the next game changers.

What will you be doing?

As a Senior DevSec Engineer in our DevSec team you will be responsible for ensuring that security is embedded and automated within the SDLC using the latest security tools and DevOps practices. This is a hands-on DevSec role where the candidate will be helping to implement security tools and work with teams to shift security left and to promote secure-by-design principles.


  • Implement automated security tooling 
  • Promoting a DevSec Culture, including training and forums
  • Working with engineering teams to help remediate vulnerabilities within their pipelines
  • Properly balancing security risks against the other needs of the business
  • Triage issues found by tools, external reports, and various tests, to accurately assess the real risks
  • Offering your expertise to other specialists in the designing and building of secure software across our business

Are you?

  • A Security Professional - A foundation and in-depth technical knowledge of security engineering
  • Collaborative with the InfoSec teams and other stakeholders 
  • Experienced with automation, scripting and optimizing day-to-day operations, workflows, and security tools
  • Able to describe the lifecycle of code through a pipeline and into production
  • Experienced in a security role, or a role that works closely with development/engineering teams
  • Experienced in Cloud security (preferably Amazon Web Services)
  • An excellent communicator, in both technical and non-technical topics

Bonus points for...

  • Previous experience working with security tooling in DevOps and Cloud environments
  • Terraform knowledge
  • SAST, SCA Experience 
  • Will to learn new technologies and take initiative
  • Cloud Custodian knowledge

Why should you join us? 

We’re gearing up for our biggest chapter yet – and it’s being driven by tech. 

That means full steam ahead working on our global platform and real challenges for you to noodle and solve – as we build new things, reimagine the stack and go after the greenfield. 

We believe that great ideas come from everywhere. So, there are no pigeonholes here. We keep it agile and open. Think big remits and huge ownership in a continuous learning environment. Close knit teams, with mentorships and global career opportunities. Everyone working together to make a genuine difference to small business owners. 

Join the team making it happen. Help us define long-term commitments and launch the next game changers – let’s build the incredible.  

It’s in our differences that we find our strengths. 

At Funding Circle, we celebrate and support the differences that make you, you. We’re proud to be an equal opportunity workplace and affirmative action employer. We truly believe that diversity makes us better. We particularly encourage applications from applicants from underrepresented backgrounds. We will consider flexible working options; please talk to us to discuss how we could make this role flexible for you.

Want to Build the Incredible? We’d love to hear from you.