Lead DevSecOps Engineer
At Wayhome we are reinventing homeownership by co-investing with people who haven't been able to buy a home yet. We’re a small team of Engineers, Property Specialists, Data Scientists and Creatives, who are addressing one of the biggest and most life-changing problems our customers have: namely, how can they get the security and freedom of homeownership for their families and for themselves.
We’re looking for a Lead DevSecOps Engineer to join the team. Reporting to Oisin Mulvihill our CTO, the role will sit within the tech team based here in London, and rather reluctantly positioned by the snacks. The team values empathy, taking a pragmatic approach to our code and work, and takes delight in helping each other out. Our development process is designed around ensuring we are always working on something that is delivering value to the business.
We enjoy working collaboratively, checking in with each other every morning at our daily standups and reflecting on the work we’ve done every two weeks in our retrospectives. In doing this, we aim to avoid silos and regularly troubleshoot with people at neighbouring desks. We believe in well tested and documented code, and use the walls and windows of our office as whiteboards to flesh out an API or design a database table.
Finally, in living our pragmatic value, we understand that there isn’t a one size fits all solution to the way we work; what works today will not necessarily work tomorrow, especially as we expand the tech team. We are therefore always adapting and improving our work methodology using insight and feedback, which we as a team, drive forward.
Who you are
- You’ll be a keen communicator, interacting with a diverse group of people including: directors, managers, developers and subject matter experts.
- You truly enjoy security and operations. You’ll be able to explain the ‘Why’ of security.
- You’ll have practical experience managing security while building and running small teams in a variety of organisations.
- You won’t be afraid to try out new things and be able to clearly explain complicated issues to a broad audience.
The technical skills you’ll have
- You’ll have expert experience in one or more of the public cloud platforms. Google Cloud would be preferable.
- You’ll be proficient in using configuration management tools, for example terraform, saltstack, ansible, etc.
- You’ll have experience in architecture design and monitoring and performance instrumentation in a complex "enterprise" environment.
- You’ll be comfortable with Linux and MacOS systems and have an understanding of running applications in a web context.
- You’ll have implemented and tested security policies and have a working knowledge of commonly used web infrastructure and tools.
It would be great if you have experience with
- Terraform and other HashiCorp tooling.
- Kubernetes, Helm and Docker containers.
- Writing and/or testing software applications.
- CI/CD tools for example Jenkins, CircleCI.
- Database optimisation.
The tools you’ll use
What you’ll do
- You’ll work with the CTO to outline the security strategy we need now while planning for future growth. You’ll lead discussions on our disaster prevention and recovery plan.
- You’ll work with the dev and data teams to provide the infrastructure they need while mitigating the security and operational risks.
- You’ll keep in touch with security trends and threats as they evolve and help train technical staff in best security and operations practices.
- You’ll manage our outsourced IT support provider, ensuring the best service is practiced in line with our SLA.
- You’ll lead on the research, experimentation, and selection of new infrastructure technology. Being the voice that always puts stability and security above all else.
- You’ll decide on the security scanning and other tools needed to find vulnerabilities and defend our systems.
- You’ll work with the developer and data teams to introduce "continuous security" into new and existing CI/CD pipelines. And help both teams in automating continuous integration and deployment.
- You’ll assist in giving/receiving code reviews. You’ll perform application security scans and architectural reviews.
- You’ll work out metrics and reporting to show where we are and work out how we can improve while developing and promoting automated security scanning tools and practices throughout the organisation.
What we offer you
- Salary of £80,000 - £90,000 per annum.
- Offices right above Bank Tube Station, London.
- Your choice of hardware.
- Standing desks and wellness rooms.
- Free tea and a barista-staffed coffee bar. Also Free.
- Training budget to help you grow.
- Paid time off for volunteering.
- Annual team outings budget.
- Free team lunch on Fridays.
- Unlimited holidays. A minimum of 28 days.
Apply today and start your next adventure with Wayhome!
Applicants must have the right to work in the UK, we are currently unable to offer sponsorship.