DevSecOps Engineer
Amsterdam
Adyen
End-to-end payments, data, and financial management in one solution. Meet the financial technology platform that helps you realize your ambitions faster.This is Adyen
Adyen provides payments, data, and financial products in a single solution for customers like Meta, Uber, H&M, and Microsoft - making us the financial technology platform of choice. At Adyen, everything we do is engineered for ambition.
For our teams, we create an environment with opportunities for our people to succeed, backed by the culture and support to ensure they are enabled to truly own their careers. We are motivated individuals who tackle unique technical challenges at scale and solve them as a team. Together, we deliver innovative and ethical solutions that help businesses achieve their ambitions faster.
DevSecOps Engineer
We are searching for a DevSecOps Engineer that will enhance the security measures in our Secure Software Development Lifecycle (SSDLC). In this second line function, you will drive implementation on existing and new techniques to support our development pipelines. Think of Continuous Integration, Security Testing (SAST, DAST, IAST, and RASP), Compliance Pipelines, Secret management, SCA and Dependency Management and Policies (OPA/Kyverno).
What you’ll do
- Together with our engineering organization, develop a desired future state for our development pipelines: where are we heading and which are the right tools, decisions, and techniques that should be included in this future state?
- Assess, design and implement controls and technologies in our SDLC pipelines.
- Develop the capabilities to operate and manage these technologies in the engineering teams.
- Perform (tool-assisted) code-reviews in critical Adyen frameworks and flows to identify vulnerabilities in it, and help engineering teams fix it properly: helping ensure there are no regressions.
- Identify structural improvement opportunities and recurring findings to train developers on recurring issues.
Who you are
- At least 5 years of experience in implementing and operating technologies in the Secure Software Development Lifecycle, including manual code reviews, SAST, DAST, IAST, RASP, dependency management, SCA and secret management.
- Someone who worked together with the CI/CD team, in implementing new security technology in the pipeline.
- Experienced in developing a high-level technical understanding of the platform and products.
- A team player with a strong security mindset to maintain and mature Adyen's security posture.
- Ability to drive change, by leading discussions, writing decision records and persuading key stakeholders in the organization.
Our Diversity, Equity and Inclusion commitments
Our unique approach is a product of our diverse perspectives. This diversity of backgrounds and cultures is essential in helping us maintain our momentum. Our business and technical challenges are unique, and we need as many different voices as possible to join us in solving them - voices like yours. No matter who you are or where you’re from, we welcome you to be your true self at Adyen.
Studies show that women and members of underrepresented communities apply for jobs only if they meet 100% of the qualifications. Does this sound like you? If so, Adyen encourages you to reconsider and apply. We look forward to your application!
What’s next?
Ensuring a smooth and enjoyable candidate experience is critical for us. We aim to get back to you regarding your application within 5 business days. Our interview process tends to take about 4 weeks to complete, but may fluctuate depending on the role. Learn more about our hiring process here. Don’t be afraid to let us know if you need more flexibility.
This role is based out of our Amsterdam office. We are an office-first company and value in-person collaboration; we do not offer remote-only roles.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CI/CD Compliance DAST DevSecOps IAST SAST SDLC Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open DoD-related jobs