DevSecOps Engineer at Luno

How we work

Our engineering team (currently ~100 engineers) is split into organisations which we call Fleets. Each Fleet focuses on a core customer journey (onboarding, security, payments, support, new business, growth and marketing etc.). Each of these fleets contains multiple smaller teams called Pods, each of which focuses on a specific aspect of the product.

Pods will include a product owner, product designer, back-end engineers, Android, iOS and Web developers, who each bring a unique perspective to the problem you are all contributing towards.

We're agile, use scrum, continuous integration and continuous delivery, deploying to production every single day.

We're building teams to help us succeed in our mission to upgrade the world to a better financial system. As a fast-growing company with offices around the world, you’ll immediately see how your contributions directly impact both our internal users and client experience. 

Your mission will involve:

As a DevSecOps Engineer, you will have technical proficiencies and familiarity in a DevOps culture. To be successful, you will have a keen interest in cybersecurity and up-to-date knowledge of threats and their trends as well as an in-depth understanding of cloud services, with a history of building vulnerability-resilient cloud based pipelines. 

Your overall responsibility will be to evaluate and ensure the security of Luno’s Software Development Life Cycle and CI/CD pipelines, by continuously assessing, evaluating and remediating vulnerabilities in each of the stages to avoid external exploitation or unscheduled downtime. To close the loop you will also possess knowledge of the implementation of risk assessment techniques and the latest security best practices to ensure that security is already considered in the initial phases of project planning.

From a work perspective, you find yourself gravitating towards a more agile environment where methodologies such as Scrum or Kanban excite you. You have a pragmatic approach to troubleshooting and solution finding and continually strive to recommend and promote improvements to processes that cause operational inefficiencies and friction whilst keeping a clear focus on delivery and timelines. 

The ideal candidate for this role will:

• “Move security left” in the software development lifecycle (SDLC) by engaging and collaborating with engineers whilst evaluating security in the software development space, recognizing and remediating any security threats well before deployment.

• Propose and implement additional SAST and Source Code Analysis (SCA) tools for security purposes in DevOps and collaborating with engineers on the findings to ensure they are addressed and remediated.  

• Be well-versed in various coding languages (such as Go, Javascript, Python, Kotlin, Swift) so as to collaborate competently with other teams within the organization. 

• Evaluate and approve Terraform infrastructure changes to our AWS and GCP accounts

• Evaluate Identity and Access Management requirements as to ensure the implementation of best practices principles such as least privilege and need to know. 

• Be familiar with technologies in use at Luno such as AWS, Docker, Kubernetes, and how to implement developer tooling such as Jenkins, git and dependency management.

• Possess proficient communication skills to teach the team various concepts like scalability, automation, and security.  Having excellent communication skills helps to deliver the message in an efficient manner. 

• Assist in performing risk assessment as part of project planning phases.  

• Assist in cyber security audits and annual assessments.

• Spend your free time keeping up to date with the details of cybersecurity threats and the latest software in the DevOps and security space.

• A work permit for South Africa if you are not a South African citizen.

Don’t be put off if you don’t tick all of the boxes – they’re a guide based on what we’d love to see but we appreciate that excellent software engineers have diverse backgrounds.

Remote Life at Luno

If you’re looking to work on something truly global and disruptive with a forward-thinking and ambitious team that highly values diversity, teamwork, and the continuous quest for excellence, then this is an opportunity for you.

Like the majority of the companies, Luno is currently working remotely to keep our employees safe, which means you will not be physically, but virtually onboarded for now!

• Live long and prosper. We’ve got you covered with excellent private medical insurance. 

• You'll be able to continuously up-skill yourself with access to free courses on Udemy, Coursera and Codecademy.

• For the crypto fans among you (should be everyone!), you'll pay 0 fees with Luno from the day you start

• Generous maternity / paternity leave. 

• An annual inspiration day, over and above your annual and public holiday leave... for that pottery course you’ve always been meaning to do!

• Work with a globally diverse team of hardworking, ambitious and friendly people on something that will truly revolutionise the financial world.

• We have virtual cooking, dancing, drawing and house planting classes hosted by our Lunauts to break up your day and work that other part of your brain. 

• Work is important, but your mental health should always take priority. At Luno, we do everything we can to make sure you lead a healthy and happy life. That's why Luno gives you free access to Headspace – a full library of guided meditations, sleep stories, and music.