We're looking for a Senior DevSecOps Engineer to join our small, high-impact team as the second-in-command (2IC) to the DevSecOps Lead. This isn't a role where you blend into the background — on a small team, everything you do is amplified.
We're trusted by banks and other security-conscious organisations to handle sensitive data. The security, stability, and reliability of our operations is paramount.
You're comfortable driving large initiatives to completion, navigating ambiguity, and making sound decisions without waiting for permission. You're a leader by default — whether or not it's in your title.
You're also not afraid to get your hands dirty: wrangling Lambda functions, building Terraform configurations, and helping design and implement infrastructure for major new service capabilities.
We are an AI-first organisation. Our engineering teams use Claude Code, and we're heavily invested in empowering both engineering and the wider business with AI tooling. You should be enthusiastic about leveraging AI to move faster and do more with less.
Minimum 5 years building and managing secure, highly available web applications and integration services in AWS.
Experience with containerised services in AWS ECS — setup, security, management, and monitoring.
A deep understanding of Terraform.
Strong knowledge of AWS networking primitives.
Experience building and maintaining CI/CD pipelines using GitHub Actions or similar platforms.
Strong scripting skills in Python, TypeScript, and Bash.
Experience with observability and monitoring platforms.
Extensive experience working with Linux environments.
Relevant AWS certifications highly regarded (e.g., DevOps Engineer, Solutions Architect).
Experience with Cloudflare.
Experience with Kubernetes.
Experience with spec-driven development.
Experience working with autonomous sandboxed coding agents.
An interest in platform engineering and developer experience.
Act as the 2IC to the DevSecOps Lead, with a view to growing into broader leadership responsibilities.
Drive large initiatives to completion — owning outcomes, not just tasks.
Collaborate with team members and product owners to solve operational issues and develop automation and enhancements.
Control and manage end-to-end deployment processes, implementing and maintaining CI/CD practices alongside the development team.
Work closely with our security function on implementation and remediation — tightening controls, implementing policies, and improving our security posture.
Continuously improve the service and technology stack.
Work closely with the DevSecOps Lead, VP of Engineering, and Head of Security.
Participate in on-call rotation (approximately 1 in every 6 weeks, remunerated).
At FrankieOne, we believe verification and onboarding should be fast, flexible and frictionless. We're a trusted compliance, identity and fraud detection engine that helps banks, fintechs and other companies onboard and protect their customers.
Our platform is optimised to verify customers safely and securely, minimising risk and maximising your opportunity. Simply put, we’re helping companies balance regulatory compliance with a positive customer experience, every time.
As the gateway to the global ecosystem of compliance, identity and fraud detection tools, FrankieOne is the best way to unlock more customers quickly and detect suspicious activity fast, for true scalability and security.
Our platform includes KYC (know your customer), Biometrics, IDV (identity verification), KYB (know your business), AML/CTF (anti-money laundering and counter terrorism financing) compliance, transaction monitoring and fraud prevention.
