Start Hiring Start Applying
Start Applying

StudySmarter Job Board

DevOps Security Engineer
Apply now
Job Board
Companies
Decentralized Masters
DevOps Security Engineer

DevOps Security Engineer

Full-Time 80000 - 100000 £ / year (est.) No home office possible
Apply now Go Premium
Decentralized Masters

At a Glance

  • Tasks: Secure a platform managing millions in digital assets and conduct penetration testing.
  • Company: Join Legacy, a leading Web3 wallet innovator with a focus on security.
  • Benefits: Enjoy competitive salary, performance incentives, remote work, and team offsites.
  • Other info: High ownership role with excellent career growth opportunities in a dynamic environment.
  • Why this job: Make a real impact in the crypto space while enhancing your security skills.
  • Qualifications: 5+ years in software engineering with strong security and QA experience required.

The predicted salary is between 80000 - 100000 £ per year.

About Legacy

Legacy is an easy-to-use, non-custodial Web3 wallet designed to protect digital assets through beneficiary protection and seamless DeFi access. Users can swap across chains, earn yield in one click, and safeguard wealth for the next generation.

About The Software Division

We are building a portfolio of software products inside the Decentralized Masters ecosystem, including:

  • Legacy Wallet – a non-custodial Web3 wallet with beneficiary protection and seamless DeFi access
  • Trading Bot – automated crypto execution tools for serious investors
  • Future fintech and investor infrastructure tools

We are now building the retention and lifecycle engine that will power long-term recurring revenue across all products.

About The Role

You will be the single person responsible for the security of a platform that tracks hundreds of millions in digital assets. Your primary responsibilities are security and quality assurance. You own penetration testing, vulnerability assessments, threat modeling, automated test frameworks, and CI quality gates across every product we ship. You also own infrastructure: AWS, CI/CD pipelines, monitoring, and incident response.

The ideal candidate has spent time at major product-driven fintech and crypto companies where a single security failure can destroy user trust overnight.

What You Will Own

Security (Primary)

  • Own the security posture across all products: Legacy, Trading Bot, and future platforms.
  • Conduct regular penetration testing, vulnerability assessments, and threat modeling aligned with OWASP standards and methodologies.
  • Ensure full coverage of the OWASP Top 10 in application security testing, code reviews, and deployment checks.
  • Perform security-focused code reviews across frontend, backend, and infrastructure code.
  • Implement and manage secrets management, access controls, and least-privilege policies.
  • Build and maintain incident response playbooks.
  • Stay ahead of Web3 and crypto-specific attack vectors.
  • Manage and coordinate external security audits and penetration tests from third-party firms.

Quality Assurance & Testing (Primary)

  • Design and implement test strategies across all products.
  • Build and maintain automated testing frameworks and CI quality gates.
  • Define and track quality metrics.
  • Write and execute security test cases.
  • Perform both white-box and black-box testing.
  • Test across the full stack.

Infrastructure & DevOps (Foundation)

  • Maintain and improve cloud infrastructure on AWS using Infrastructure as Code.
  • Own CI/CD pipelines.
  • Harden infrastructure.
  • Build logging, monitoring, and alerting across all services.
  • Ensure audit trails for user actions, system changes, and access events.
  • Manage production reliability, incident response, and cost optimization.

Fullstack Development (When the fortress is secure)

  • Contribute production code across frontend and backend.
  • Participate in architecture discussions and code reviews.

Requirements

What You Bring Required

  • 5+ years in software engineering roles with meaningful, hands-on security and QA experience.
  • Fullstack development experience.
  • Hands-on penetration testing and vulnerability assessment experience.
  • Strong working knowledge of OWASP standards.
  • Experience building automated test frameworks.
  • AWS expertise.
  • Infrastructure as Code experience.
  • Container technologies.
  • Scripting and automation proficiency.
  • Experience with secrets management tools.
  • Familiarity with security and testing tools.
  • Strong communication skills.

Nice-to-Have

  • Security certifications.
  • Experience at a crypto, DeFi, Web3, or fintech product company.
  • Familiarity with Web3-specific security concerns.
  • SDET background or experience in a hybrid development-and-testing role.
  • Experience testing financial systems.
  • Experience implementing zero-trust architectures.
  • Bug bounty participation or contributions to open-source security tooling.

Benefits

Competitive salary + performance-based incentives tied to retention & LTV improvement. Direct exposure to founders. Team Offsites. Remote work. High ownership, high-impact role.

DevOps Security Engineer employer: Decentralized Masters

At Legacy, we pride ourselves on being an exceptional employer that fosters a culture of innovation and security in the rapidly evolving Web3 space. Our team enjoys competitive salaries, performance-based incentives, and the flexibility of remote work, all while having direct exposure to our founders and contributing to high-impact projects. With a strong emphasis on employee growth and ownership, we empower our engineers to take charge of their work, ensuring a rewarding and meaningful career path in a supportive environment.
Decentralized Masters

Contact Detail:

Decentralized Masters Recruiting Team

View Decentralized Masters Profile

StudySmarter Expert Advice 🤫

We think this is how you could land DevOps Security Engineer

✨Tip Number 1

Network like a pro! Get out there and connect with folks in the fintech and crypto space. Attend meetups, webinars, or even online forums. You never know who might have the inside scoop on job openings or can put in a good word for you.

✨Tip Number 2

Show off your skills! Create a portfolio that highlights your security projects, penetration testing experiences, and any cool stuff you've built. This is your chance to demonstrate that you’re not just talking the talk but walking the walk.

✨Tip Number 3

Prepare for those interviews! Brush up on your knowledge of OWASP standards and be ready to discuss real-world scenarios where you’ve tackled security challenges. Practice explaining complex concepts in simple terms – it’ll impress both technical and non-technical interviewers.

✨Tip Number 4

Apply through our website! We love seeing candidates who are genuinely interested in joining us at StudySmarter. Tailor your application to highlight how your experience aligns with our mission and the role. Let’s make it happen!

We think you need these skills to ace DevOps Security Engineer

Penetration Testing
Vulnerability Assessment
Threat Modeling
OWASP Standards
Automated Testing Frameworks
CI/CD Pipelines
AWS Expertise
Infrastructure as Code
Container Technologies
Scripting and Automation
Secrets Management
Security and Testing Tools
Fullstack Development
Communication Skills

Some tips for your application 🫡

Tailor Your CV: Make sure your CV is tailored to the DevOps Security Engineer role. Highlight your hands-on security and QA experience, and don’t forget to mention any relevant projects or tools you've worked with that align with our needs.

Craft a Compelling Cover Letter: Your cover letter is your chance to show us your personality and passion for security. Share specific examples of how you've tackled security challenges in the past and why you're excited about working with us at Legacy.

Show Off Your Skills: In your application, be sure to showcase your technical skills, especially around penetration testing, vulnerability assessments, and AWS expertise. We want to see how you can contribute to our security posture right from the get-go!

Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of applications and ensures you’re considered for the role without any hiccups!

How to prepare for a job interview at Decentralized Masters

✨Know Your Security Fundamentals

Make sure you brush up on your knowledge of OWASP standards and the OWASP Top 10. Be prepared to discuss how you've applied these principles in your previous roles, especially in penetration testing and vulnerability assessments.

✨Showcase Your Hands-On Experience

This role requires practical experience, so be ready to share specific examples of your work in security and QA. Talk about the tools you've used, like Burp Suite or AWS Secrets Manager, and how you've integrated security into CI/CD pipelines.

✨Demonstrate Your Problem-Solving Skills

Expect to face scenario-based questions where you'll need to identify potential security vulnerabilities. Practice thinking aloud as you work through these problems, showing your thought process and how you approach breaking things to make them better.

✨Communicate Clearly with Non-Technical Stakeholders

Since you'll need to explain complex security risks to non-technical team members, practice simplifying your explanations. Prepare to discuss how you've successfully communicated security trade-offs in past projects, ensuring everyone understands the implications.

DevOps Security Engineer
Decentralized Masters

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

>