Senior DevSecOps Engineer

Who We Are

At BKN301, we build fintech solutions that enable banks, fintechs, and merchants to grow and innovate across emerging markets.

We’re a London-based financial technology group, with offices in Milan (Italy), Doha (Qatar), and and San Marino, and an international footprint that’s rapidly expanding.

We move fast, think globally, and act as one team — transforming ideas into real, scalable fintech solutions every day.

Why Join Us

Joining BKN301 means becoming part of a fast-growing international fintech, where technology and people evolve together.

Here, every idea counts: you’ll have a tangible impact on strategic projects, learn continuously, and help build something meaningful from the ground up.

You’ll join a company that values each person’s contribution, gives space to experiment, and promotes an open approach to innovation — because our success comes from the people who make it possible.

Your Role

As a Senior DevSecOps Engineer, you will lead the integration of security into our DevOps processes, pipelines, and tooling. You will architect and implement security solutions, including SIEM, vulnerability management, and other critical security tools, to protect our BaaS platform. You will collaborate with engineering, DevOps, and security teams to ensure our financial applications and infrastructure are secure by design while enabling efficient and scalable operations.

A few examples of your responsibilities

• Tooling Implementation: Architect, deploy, and manage security-related tools such as SIEM (e.g., Splunk, QRadar), vulnerability scanners (e.g., Nessus, Qualys), and endpoint protection systems.
• Security Integration: Embed security practices and tools into CI/CD pipelines to ensure code, applications, and infrastructure meet security standards before deployment.
• Vulnerability Management: Automate the detection, reporting, and remediation of vulnerabilities in applications, containers, and infrastructure.
• Infrastructure as Code (IaC): Secure and review IaC templates (e.g., Terraform, CloudFormation) to enforce best practices for cloud environments.
• Cloud Security: Design and implement security controls for cloud platforms (AWS, Azure, GCP), including IAM policies, network segmentation, and logging.
• Automation: Develop scripts and tools to automate security testing, monitoring, and remediation processes.
• Policy Enforcement: Implement tools like Open Policy Agent (OPA) to enforce security policies across code, infrastructure, and deployments.
• Monitoring & Alerting: Enhance security monitoring by setting up SIEM solutions and integrating them with logging and alerting tools to detect threats in real time.
• Threat Modeling: Conduct threat modeling sessions with development teams to identify and mitigate potential risks early in the design phase.
• Compliance: Implement and maintain tools to ensure compliance with industry regulations such as SOC 2, PCI DSS, and GDPR.
• Collaboration: Partner with development, DevOps, and security teams to train and promote secure coding practices and DevSecOps culture.

What We’re Looking For

Essential Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).
• 5+ years of experience in DevSecOps, security engineering, or related roles in cloud and DevOps environments.
• Good conversational and professional proficiency in English.
• Proven experience implementing and managing security tools such as SIEM, vulnerability scanners, and endpoint protection systems.
• Expertise in deploying and managing SIEM solutions (e.g., Splunk, QRadar, Elastic SIEM).
• Proficiency in CI/CD tools like Jenkins, GitLab CI/CD, Azure DevOps, or CircleCI.
• Strong knowledge of containerization (Docker, Kubernetes) and securing containerized environments.
• Expertise with security tools such as Snyk, Veracode, SonarQube, or Checkmarx for code analysis.
• Experience with cloud security in AWS, Azure, or GCP (e.g., IAM, security groups, WAF).
• Hands-on experience with scripting languages (e.g., Python, Bash, PowerShell).
• Familiarity with Infrastructure as Code (IaC) tools like Terraform, CloudFormation, or Pulumi.
• Understanding of security standards and frameworks (e.g., NIST, OWASP, CIS Benchmarks).

Nice to Have

• Certifications such as AWS Security Specialty, Certified Kubernetes Security Specialist (CKS), or Certified DevSecOps Professional.
• Experience in financial services, fintech, or regulated industries.
• Familiarity with Zero Trust Architecture principles.
• Knowledge of secure API development and integration.

Soft Skills That Make a Difference

• Strategic thinking with a bias for action.
• Strong analytical and problem-solving skills.
• Ownership and accountability.
• Operational rigor and attention to detail.
• Excellent communication and collaboration abilities.
• Curiosity, adaptability, and passion for innovation.

What We Offer

• Permanent, full-time role.
• A fair and market-aligned compensation.
• Dynamic, international culture built on trust and collaboration.
• Real impact on global fintech transformation projects.
• Growth and learning opportunities within an innovative group.

Our Selection Process

• HR Introduction: A friendly chat with our HR team.
• Hiring Manager Interview: Discuss your experience and vision.
• Technical Evaluation: Show us your expertise.
• Team Fit Discussion: Ensure mutual alignment with our culture.

Every selection process is an opportunity for mutual discovery and shared growth.

Diversity & Inclusion

At BKN301, we believe innovation thrives when different perspectives meet.

We’re proud to be an equal opportunity employer, committed to diversity and inclusion in all forms.

Ready to lead our next phase of growth and operational excellence?

Apply now or reach out to