DevSecOps Engineer

Why Entersekt

Founded over 16 years ago, with more recent investments from Accel-KKR, Entersekt is a leader in digital banking fraud prevention and payment security, including mobile authentication, mobile app security, and 3D Secure authentication for issuers, acquirers and payment networks. We offer highly scalable products with a track record of success across multiple continents.

Entersekt enables secure digital transactions for leading financial institutions globally. We exist to create a world where everyone can transact digitally without fear or compromise. Currently, we protect the digital transactions of over 210 million active users on our platform and hold 120 active patents that recognize innovation in digital security, payments, and user experience. Entersekt offers customers secure authentication and digital payments experiences that remove unnecessary friction. Entersekt has a diverse product portfolio and aggressive roadmap that positions the company well to sustain competitive advantage as it expands globally with emphasis on North America and European markets.

The Ideal Candidate

The ideal candidate is a senior, hands‑on DevSecOps Engineer with strong experience operating and securing cloud‑native production environments in regulated settings.

They have deep expertise in AWS, Kubernetes and Infrastructure as Code, and are comfortable owning production reliability, security monitoring, incident response and audit readiness (e.g. SOC2, PCI‑DSS). They favour automation over manual processes and take a pragmatic, security‑first approach to building and running scalable platforms.

This individual works well across engineering teams, communicates clearly in a distributed environment, and is confident mentoring others on secure infrastructure and DevSecOps best practices.

The Role

The DevSecOps Engineer's objective is to integrate security controls and maintain a highly available cloud infrastructure. You will ensure our platform remains secure, scalable, and compliant with relevant security standards (including SOC2 and PCI-DSS) by focusing on the running, securing, and monitoring of services in production.

Key Objectives

• Production Excellence: Operate production environments with a security-first mindset, monitoring both availability and potential threats.
• Infrastructure as Code: Build and maintain secure IaC to manage platform scaling and consistency.
• Continuous Compliance: Ensure the success of security audits through automated compliance checks and rigorous evidence collection.
• Culture & Collaboration: Bridge the gap between development, security, and operations to foster a robust DevSecOps culture within the wider Engineering department.

Responsibilities

• Infrastructure Management: Manage core AWS services (EKS, RDS, S3, Lambda) with a focus on encryption, least-privilege access, and service reliability.
• Monitoring & Incident Response: Develop and refine strategies for monitoring system health and security events using tools like OpenSearch, Prometheus, and Grafana.
• Compliance & Auditing: Ensure all AWS environments meet relevant security standards.