Start Hiring Start Applying
Start Applying

StudySmarter Job Board

DevOps Security Engineer in London
Apply now
Job Board
Companies
Decentralized Masters
DevOps Security Engineer

DevOps Security Engineer in London

London Full-Time 80000 - 100000 £ / year (est.) No home office possible
Apply now Go Premium
Decentralized Masters

At a Glance

  • Tasks: Secure and enhance a cutting-edge Web3 wallet and trading platform.
  • Company: Join a pioneering fintech company focused on digital asset protection.
  • Benefits: Competitive salary, performance incentives, remote work, and team offsites.
  • Other info: High ownership role with excellent career growth opportunities.
  • Why this job: Be the guardian of digital assets and make a real impact in crypto security.
  • Qualifications: 5+ years in software engineering with strong security and QA experience.

The predicted salary is between 80000 - 100000 £ per year.

About Legacy

Legacy is an easy-to-use, non-custodial Web3 wallet designed to protect digital assets through beneficiary protection and seamless DeFi access. Users can swap across chains, earn yield in one click, and safeguard wealth for the next generation.

About The Software Division

We are building a portfolio of software products inside the Decentralized Masters ecosystem, including:

  • Legacy Wallet – a non-custodial Web3 wallet with beneficiary protection and seamless DeFi access
  • Trading Bot – automated crypto execution tools for serious investors
  • Future fintech and investor infrastructure tools

We are now building the retention and lifecycle engine that will power long-term recurring revenue across all products.

About The Role

You will be the single person responsible for the security of a platform that tracks hundreds of millions in digital assets. Your primary responsibilities are security and quality assurance. You own penetration testing, vulnerability assessments, threat modeling, automated test frameworks, and CI quality gates across every product we ship. You also own infrastructure: AWS, CI/CD pipelines, monitoring, and incident response.

The ideal candidate has spent time at major product-driven fintech and crypto companies where a single security failure can destroy user trust overnight.

What You Will Own

Security (Primary)

  • Own the security posture across all products: Legacy, Trading Bot, and future platforms.
  • Conduct regular penetration testing, vulnerability assessments, and threat modeling aligned with OWASP standards and methodologies.
  • Ensure full coverage of the OWASP Top 10 in application security testing, code reviews, and deployment checks.
  • Perform security-focused code reviews across frontend, backend, and infrastructure code.
  • Implement and manage secrets management, access controls, and least-privilege policies.
  • Build and maintain incident response playbooks.
  • Stay ahead of Web3 and crypto-specific attack vectors.
  • Manage and coordinate external security audits and penetration tests from third-party firms.

Quality Assurance & Testing (Primary)

  • Design and implement test strategies across all products.
  • Build and maintain automated testing frameworks and CI quality gates.
  • Define and track quality metrics.
  • Write and execute security test cases.
  • Perform both white-box and black-box testing.
  • Test across the full stack.

Infrastructure & DevOps (Foundation)

  • Maintain and improve cloud infrastructure on AWS using Infrastructure as Code.
  • Own CI/CD pipelines.
  • Harden infrastructure.
  • Build logging, monitoring, and alerting across all services.
  • Ensure audit trails for user actions, system changes, and access events.
  • Manage production reliability, incident response, and cost optimization.

Fullstack Development (When the fortress is secure)

  • Contribute production code across frontend and backend.
  • Participate in architecture discussions and code reviews.

Requirements

What You Bring Required

  • 5+ years in software engineering roles with meaningful, hands-on security and QA experience.
  • Fullstack development experience.
  • Hands-on penetration testing and vulnerability assessment experience.
  • Strong working knowledge of OWASP standards.
  • Experience building automated test frameworks.
  • AWS expertise.
  • Infrastructure as Code experience.
  • Container technologies.
  • Scripting and automation proficiency.
  • Experience with secrets management tools.
  • Familiarity with security and testing tools.
  • Strong communication skills.

Nice-to-Have

  • Security certifications.
  • Experience at a crypto, DeFi, Web3, or fintech product company.
  • Familiarity with Web3-specific security concerns.
  • SDET background or experience in a hybrid development-and-testing role.
  • Experience testing financial systems.
  • Experience implementing zero-trust architectures.
  • Bug bounty participation or contributions to open-source security tooling.

Benefits

Competitive salary + performance-based incentives tied to retention & LTV improvement. Direct exposure to founders. Team Offsites. Remote work. High ownership, high-impact role.

DevOps Security Engineer in London employer: Decentralized Masters

At Legacy, we pride ourselves on being an exceptional employer that fosters a culture of innovation and security in the rapidly evolving Web3 space. Our team enjoys competitive salaries, performance-based incentives, and the flexibility of remote work, all while having direct exposure to our founders and contributing to high-impact projects. With a strong emphasis on employee growth and ownership, we empower our engineers to take charge of their work, ensuring a rewarding and meaningful career path in a supportive environment.
Decentralized Masters

Contact Detail:

Decentralized Masters Recruiting Team

View Decentralized Masters Profile

StudySmarter Expert Advice 🤫

We think this is how you could land DevOps Security Engineer in London

✨Tip Number 1

Network like a pro! Get out there and connect with folks in the fintech and crypto space. Attend meetups, webinars, or even online forums. You never know who might have the inside scoop on job openings or can refer you directly to hiring managers.

✨Tip Number 2

Show off your skills! Create a portfolio that highlights your security projects, penetration testing results, or any cool code you've written. This is your chance to demonstrate your hands-on experience and make a lasting impression on potential employers.

✨Tip Number 3

Prepare for technical interviews by brushing up on your knowledge of OWASP standards and common vulnerabilities. Practice explaining your thought process when tackling security challenges. Remember, they want to see how you think, not just what you know!

✨Tip Number 4

Apply through our website! We love seeing candidates who are genuinely interested in joining our team. Tailor your application to highlight your relevant experience and show us why you're the perfect fit for the DevOps Security Engineer role.

We think you need these skills to ace DevOps Security Engineer in London

Penetration Testing
Vulnerability Assessment
Threat Modeling
OWASP Standards
Automated Testing Frameworks
CI/CD Pipelines
AWS Expertise
Infrastructure as Code
Container Technologies
Scripting and Automation
Secrets Management
Security and Testing Tools
Fullstack Development
Communication Skills

Some tips for your application 🫡

Tailor Your CV: Make sure your CV is tailored to the role of DevOps Security Engineer. Highlight your hands-on security and QA experience, and don’t forget to mention any relevant projects or tools you've worked with that align with our needs.

Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about security in the Web3 space and how your skills can help us protect our users' digital assets. Keep it engaging and personal!

Showcase Your Problem-Solving Skills: In your application, give examples of how you've tackled security challenges in the past. We want to see your thought process and how you approach breaking things to make them better. Don’t hold back!

Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team!

How to prepare for a job interview at Decentralized Masters

✨Know Your Security Fundamentals

Make sure you brush up on your knowledge of OWASP standards and the OWASP Top 10. Be prepared to discuss how you've applied these principles in your previous roles, especially in penetration testing and vulnerability assessments.

✨Showcase Your Hands-On Experience

This role requires practical experience, so be ready to share specific examples of your work in security and QA. Talk about the tools you've used, like Burp Suite or AWS Secrets Manager, and any challenges you've overcome in securing applications.

✨Demonstrate Your Problem-Solving Skills

Expect to face hypothetical scenarios during the interview. Practice articulating how you would approach identifying and mitigating potential security threats, such as phishing campaigns or API key compromises. Think like a hacker!

✨Communicate Clearly with Non-Technical Stakeholders

Since you'll need to explain security risks to non-technical team members, practice simplifying complex concepts. Prepare to discuss how you've successfully communicated security trade-offs in past projects, ensuring everyone understands the implications.

DevOps Security Engineer in London
Decentralized Masters
Location: London

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

>