Job Description
In this role you will lead the charge in securing and scaling our infrastructure and CI/CD pipelines for regulated clinical software. Working cross-functionally with engineering, QA, product, and regulatory teams, you'll design, implement, and monitor secure, traceable DevOps workflows. You enable rapid, compliant delivery of Software as a Medical Device (SaMD) products.
Please note: this role requires in office presence for 3 days a week. Our office is in Farringdon, London. If you can't commit to this, please don't apply.
Responsibilities
* Own AWS infrastructure security using least-privilege and zero-trust principles
* Build and maintain secure CI/CD pipelines with automated security gates (Snyk, SonarQube, OWASP ZAP)
* Conduct and coordinate penetration testing (internal and third-party); triage and drive remediation
* Deploy runtime threat detection (GuardDuty, Falco, Wazuh)
* Manage secrets detection and scanning (GitLeaks, Vault)
* Build observability with ELK stack, Elastic agents, and anomaly alerting
What success looks like:
3 months
1. Deploy SAST tooling (SonarQube) across all repositories with automated PR scanning
2. Implement DAST scanning (OWASP ZAP) for staging environments with scheduled scans
3. Deploy secrets ...