Security Software Engineer

DevSecOps Engineer | Cloud Security

Hybrid - 3 days On-site: Bath, UK

We're partnering with a fast-growing technology company operating at the intersection of
data, finance, and cloud infrastructure
. Their platforms transform complex data into clean, usable intelligence for global partners, with security embedded at the core of how they build and operate.

They are now looking for a
DevSecOps / Cloud Security Engineer
to join their Product Engineering team and take ownership of embedding security into the engineering lifecycle.

This is a hands-on role suited to someone who believes in
building security in
, rather than bolting it on.

The Role

Sitting at the intersection of Engineering, Security, and Compliance, you will work closely with the Cloud Architect and Compliance Manager to strengthen and scale the company's security posture.

You'll combine hands-on technical work with security governance, helping to harden the cloud environment, automate controls, and support compliance initiatives.

Key Responsibilities

  • Review and remediate cloud configurations against secure baseline standards
  • Own and drive technical security issues end to end
  • Implement and automate security controls, compliance checks, and incident response workflows
  • Improve monitoring, logging, and alerting across the platform
  • Participate in a production support rotation
  • Manage internal IT systems, access control, and organisational security posture
  • Contribute to compliance and audit documentation and evidence generation

Essential Experience

  • 2–3+ years' experience in DevSecOps, Cloud Security, DevOps, or Platform Engineering
  • Hands-on experience with at least one major cloud provider (AWS, GCP, or Azure)
  • Strong experience with Infrastructure as Code (Terraform)
  • Experience automating security, compliance, or operational workflows
  • Comfortable working in technical English

Nice to Have

  • Exposure to ISO 27001 or SOC2
  • Understanding of network security fundamentals
  • Experience securing and operating databases (backup, restore, monitoring)
  • Experience with vulnerability management and penetration testing findings
  • Familiarity with monitoring and logging stacks (Prometheus, Grafana, ELK)

What's On Offer

  • Competitive base salary plus ~10% performance bonus
  • Stock options
  • Private medical insurance
  • 23 days holiday plus public holidays
  • Hybrid working 3 days in Bath
  • Annual company offsite
  • Budget for training, conferences, and professional development

What Your First Months Will Look Like

First month:
deep dive into the cloud environment and security posture, quick wins, and risk prioritisation

After 3 months:
operating with autonomy, compliance backlog reduced, monitoring standardised

After 6 months:
full ownership of the security baseline, focus on prevention and continuous improvement

Note Client Does Not Offer Sponsorship

Apply Now
Apply Now

Job Details

Company
intro
Location
Bath, Somerset, UK
Hybrid / Remote Options
Posted