Infrastructure Engineer

About Us

At RedCompass Labs, we believe there are only two types of payments: good and bad. We enable the good payments and help stop the bad ones. We are global experts in payments modernization, using the latest applied AI, and deep payments expertise to deliver end-to-end payment transformation projects. Our solutions help clients accelerate their payments modernization programs while reducing costs and regulatory risk. The RedFlag Accelerator sets the industry standard for detecting human trafficking related crime, assisting both financial institutions and law enforcement.

Role Description

RedCompass Labs is looking for a senior Azure Infrastructure Engineer to own the cloud infrastructure underpinning our AI product portfolio. This is a hands-on 3rd line engineering role— you will be the person who designs, deploys, secures, and maintains the Azure environments that our AI applications run on, and who ensures those environments meet our Change Approval Board (CAB) and Information Security standards. You will work closely with our development teams, Head of Information Security, and product leads to translate architectural decisions into production-ready infrastructure, and will be accountable for the reliability, security, and compliance of our Azure estate.

Key Responsibilities:

• Security
• Administer Entra ID, PIM, RBAC, and Managed Identities across Azure.
• Drive vulnerability remediation across the estate (Dependabot, GitHub Advanced Security, and similar).
• Support the Head of Information Security on access reviews, audits, and security documentation.
• DevOps Support for Product Teams
• Review and approve production deployments from a security and infrastructure perspective.
• Own the CAB process for infrastructure and security changes.
• Maintain shared CI/CD patterns and Terraform modules used by product teams.
• Infrastructure as Code
• Write and maintain Terraform modules for Azure infrastructure— IaC only, no portal changes in production.
• Review infrastructure PRs as part of the CAB process.
• Maintain Azure Application Insights, KQL queries, dashboards, and alerting.
• Run post-incident reviews and drive preventative improvements.
• Governance & Change Management
• Prepare CAB documentation for infrastructure and security changes (deployment plans, rollback, risk).
• Support the Head of Information Security on access reviews and audits.

What We’re Looking For

• 5+ years of hands-on Azure infrastructure experience at senior / 3rd line level.
• Strong security mindset — least privilege, attack surface thinking, and audit trails as a matter of course.
• Strong Terraform skills — you write and maintain IaC, manage state and workspaces, and treat portal changes as an exception.
• Experience supporting containerised application deployments on Azure App Service or AKS (Docker, Azure Container Registry).
• Comfortable with CI/CD pipelines, ideally GitHub Actions.
• Experience with vulnerability management tooling and remediation workflows (Dependabot, GitHub Advanced Security, Trivy, or equivalent).
• Experience operating in a change-controlled environment (CAB or equivalent), including preparing deployment plans, rollback procedures, and risk assessments.
• Strong collaboration skills — able to partner with product engineering teams and enable them to ship safely, rather than blocking.

Highly Desirable

• Exposure to ISO 27001 or SOC 2 environments.
• Experience configuring API Management, Application Gateway, or Nginx (reverse proxy, SSE, streaming, timeouts).
• Azure Application Insights and KQL for operational telemetry, dashboards, and alerting.
• Scripting proficiency in Python or Bash for operational automation.
• Experience acting as the security point of contact inside an IT or platform team, partnering with a Head of Information Security or equivalent.
• Light familiarity with Azure AI services (Azure OpenAI, AI Search, Cosmos DB) – product teams own AI workloads, but context helps when reviewing their deployments.

What You Won’t Be Doing

This is a hands-on senior IC role, not an architect position. You'll work closely with our Head of Information Security, who owns security strategy and standards; your job is to implement, operate, and govern them day-to-day.

What Success Looks Like

In the first 90 days you will have taken ownership of our Azure environments, contributed to at least one production deployment through our CAB process, and have a clear view of our infrastructure debt and remediation priorities. Within six months you will be the go-to person for all Azure infrastructure decisions across our AI product teams.

What We Offer

• Work that matters. Your infrastructure will power tools that help law enforcement agencies detect and disrupt human trafficking and child sexual exploitation.
• A team that thinks differently. You will work with people who use AI as a natural part of their daily workflow, who challenge assumptions, and who care deeply about the quality and impact of their work.
• Competitive package: Up to 10% of annual earnings as a personal performance bonus.
• Life insurance.
• Group Income Protection.
• Health Insurance for you and your family.
• Dental Insurance for you and your family.
• Pension: the pension is currently 4% employer and 4% employee. You also have the option to increase your contributions to your private pension, if you wish.
• 28 days annual holiday plus Public & Bank holidays.
• This role follows a hybrid work arrangement, with an expected at least 60% onsite presence at our office located at 1 Royal Exchange London, EC3V 3DG.

RedCompass Labs is committed to promoting and supporting a diverse and inclusive workplace, ensuring fair and equitable treatment for all.