3 MONTHS

• Complete access audits and enforce secure MFA + least-privilege access across AWS, Bitbucket, and key tools
• Identify and remediate top 5 security risks in CI/CD pipelines and cloud architecture
• Fully integrate Snyk into all pipelines with automated alerts and reporting

IN THIS ROLE YOU WILL LEAD THE CHARGE IN SECURING AND SCALING OUR INFRASTRUCTURE AND CI/CD PIPELINES FOR REGULATED CLINICAL SOFTWARE. WORKING CROSS-FUNCTIONALLY WITH ENGINEERING, QA, PRODUCT, AND REGULATORY TEAMS, YOU’LL DESIGN, IMPLEMENT, AND MONITOR SECURE, TRACEABLE DEVOPS WORKFLOWS. YOU ENABLE RAPID, COMPLIANT DELIVERY OF SOFTWARE AS A MEDICAL DEVICE (SAMD) PRODUCTS.

Please note: this role requires in office presence for 3 days a week. Our office is in Farringdon, London. If you can’t commit to this, please don’t apply.

RESPONSIBILITIES

• Own SecOps across our stack by managing secure AWS infrastructure, CI/CD pipelines, and developer environments using least-privilege and zero-trust principles.
• Integrate automated security scans (Snyk, Docker, IaC) into all stages of the SDLC.
• Design, implement, and maintain AWS infrastructure as code using Terraform and Ansible
• Deliver threat models and drive remediations across cloud services (EC2, S3, RDS, etc.).
• Build Docker-first workflows with image scanning, tagging, and artifact management.
• Write and own SOPs for secure deployment and incident response aligned to ISO 27001 and IEC 62304.
• Extend observability through CloudWatch/ELK stack dashboards, anomaly detection, and alerting for security and performance monitoring.Support Transformation team by resolving any security queries that clients might have in their onboarding & deployment
• 
  What success looks like: