Senior DevOps / SecDevOps Engineer - SAAS

We are working alongside one of our fast-growing clients, a software startup, revolutionising the facilities management industry with innovative, industry-first solutions.This is a senior hands-on role suited to someone who is equally comfortable improving CI/CD pipelines, hardening cloud infrastructure, troubleshooting complex production issues, driving security uplift, and partnering closely with developers to improve engineering practices.The successful candidate will help ensure our environments are secure, scalable, cost-effective and operationally robust, while also contributing to the longer-term modernisation of our platform architecture.The role also carries accountability for core platform security engineering, including identity and access management, data protection, vulnerability management, and implementation of ISO 27001-aligned technical controls.What you will be responsible for:Own and improve AWS infrastructureWork with containerised and serverless workloadsOwn cloud security posture including network segmentation, security group design, WAF implementation, and infrastructure hardening aligned to best practices (e.g. CIS benchmarks).Maintain and improve CI/CD pipelinesImprove deployment safety, consistency, rollback capability and release qualityEstablish best practices for build, test, deployment and environment promotionEstablish and enforce security gates to prevent deployment of high-risk code or misconfigured infrastructureOwn and operate a structured vulnerability management program, including scanning, prioritisation, remediation SLAs and reportingDefine and enforce identity and access management standards, including role-based access control, least privilege, and automated provisioning and deprovisioningSupport ISO 27001-aligned controls, audit readiness and technical compliance requirementsLead or support root cause analysis for incidents, outages and major performance issuesDrive preventative improvements following production issues FMClarityHelp engineering move from reactive firefighting to disciplined operational managementImplement and manage centralised logging and security monitoring, with alerting aligned to security risks and incidents.Partner with software engineers on infrastructure, deployment and operational best practicesProvide clear recommendations to engineering leadership on operational risk, priorities and trade-offsSystem RequirementsMongoDB AtlasPostgreSQL / RDSGraphQLNode.jsMeteorECS, Kubernetes or LambdaOpenSearch, ELK, SIEM or OpenTelemetryISO 27001 environmentsStrong experiencein a senior DevOps, Platform Engineering, SRE or SecDevOps roleHands-on AWS experienceExperience with CI/CD pipelinesKnowledge of infrastructure as codesuch as Terraform, CloudFormation or CDKStrong Linux and scripting skillsExperience with monitoring and logging toolsGood understanding of security fundamentalsConfidence working in production and responding to incidentsClear communication skillsand a collaborative approachOperational AvailabilityThis role includes responsibility for supporting critical platform operations outside standard business hours, where reasonably required. This may include incident response, disaster recovery testing, urgent security or infrastructure remediation, and planned production changes or maintenance activities.Full-time permanent role with a flexible, hybrid work arrangement (2 days in office).Ongoing professional development and training opportunities.Career growth in a fast-evolving tech startup.Collaborative and supportive team environment.#J-18808-Ljbffr