DevSecOps
Capitolis
We believe the financial markets can and should work for everyone. Capitolis is the technology company creating safer and more vibrant financial markets by unlocking capital constraints and enabling greater access to more diversified capital and investment opportunities. Rooted in advanced technology and deep financial expertise, Capitolis powers groundbreaking financial solutions that drive growth for global and regional banks – and institutional investors alike. Capitolis is backed by world class venture capital firms, including Canapi Ventures, 9Yards Capital, SVB Capital, Andreessen Horowitz (a16z), Index Ventures, Sequoia Capital, Spark Capital, and S Capital, as well as leading global banks such as J.P. Morgan, Citi and State Street.
Founded in 2017, our team brings decades of experience in launching successful startups, technology, and financial services. Capitolis was named to Fast Company’s prestigious annual list of The World’s Most Innovative Companies for 2023, CNBC’s World’s Top Fintech Companies 2023 list, ranked #68 on the 2023 Deloitte Technology Fast 500 list, and was named “Best FX Software Provider” in the 2023 Euromoney Foreign Exchange Awards. Most recently, American Banker recognized Capitolis among the Best Places to Work in Fintech after the company was named by Crain’s New York Business as one of New York’s 100 Best Places to Work in 2023 for the second consecutive year. For more information, please visit our website at www.capitolis.com or follow us on LinkedIn.
Capitolis is looking for a passionate, experienced, and curious DevSecOps Engineer with proven expertise in securing production-level financial systems to take an active part in designing, implementing, and maintaining secure, compliant, and robust infrastructures in a highly regulated environment. This role focuses on embedding security into development and deployment workflows while supporting governance, risk, and compliance (GRC) efforts.
Key Responsibilities
• Design, deploy, and manage advanced security solutions to protect cloud and IT environments supporting high-value financial transactions.
• Conduct and facilitate remediation of findings from web application penetration tests and cloud infrastructure security scans.
• Integrate security best practices into CI/CD pipelines, infrastructure automation, and containerized microservices orchestration.
• Proactively monitor and enhance security posture, addressing vulnerabilities and emerging threats to ensure robust protection.
• Collaborate with Engineering, DevOps, and Operations teams across New York, London, and Tel Aviv to embed security into development and operational workflows.
• Support responses to customer security questionnaires from Tier 1 financial institutions, ensuring accurate and timely input.
• Maintain and improve infrastructure automation and configuration management tools with a security-first approach.
• Support, enhance, and maintain production-level observability with a focus on security monitoring.
• Contribute to updating and improving our DevSecOps technology stack: AWS, Operating Systems, Kubernetes, Helm, Terraform, Python, Jenkins, and more.
• Participate in mutual SOC 2 Type II efforts, assisting with evidence collection and control implementation as part of a collaborative team.
Who You Are
• At least 4 years of experience as a DevSecOps Engineer or in a similar role focused on cloud and IT security.
• Proven experience in delivering and communicating complex security solutions to Engineering and Management alike.
• Additional industry experience in R&D, QA, or IT security – a plus.
• Team player with excellent communication skills, collaborating effectively with global teams and stakeholders.
• Hands-on experience in securing critical production systems and ensuring business continuity.
• Experience with compliance frameworks (e.g., SOC 2, ISO 27001, GDPR) and supporting audit processes.
• Broad understanding of security and networking principles.
• Familiar with Cloud (Ideally AWS) Security best practices & constraints.
• Proficient in at least one scripting language (e.g., Python, Bash) for automating security workflows.
• Familiar with modern observability tools, with an emphasis on security monitoring.
• Familiar with server system administration with a focus on security hardening.
• Strong interpersonal communication and written skills in English – a must.
• Exceptional troubleshooting and problem-solving skills in high-pressure environments.
• Self-motivated and able to thrive in a fast-paced, regulated environment.
Nice to Have
• BS in Computer Science, Information Security, or a related field, or equivalent experience.
• Familiarity with security tools like AWS Security Hub, Qualys, or Nessus for scanning and remediation.
• Familiarity with Infrastructure as Code (IaC) on a cloud provider (preferably Terraform and AWS).
• Experience with Helm Charts, Argo CD and Kubernetes for secure container management and orchestration.
• Experience with CI/CD integrations, incorporating security into SCM and code review tools.
• Experience with cloud cost optimization from a security perspective.
• Familiarity with database security best practices and troubleshooting.
Our Company Values
We operate with a clear set of values that guide us — our way of being, decisions, and actions. These values define who we are, and we are committed to all of them. These values are uniquely ours. If these values — all of them — speak to you, this is an amazing place, but we are not for everyone. Learn more about our Company Values here.
- We lead with purpose, while creating exceptional value
- We pursue big breakthroughs, responsibly
- We learn from the best and are unapologetically independent
- We are obsessed with the future and fanatical about executing today
- We play tough, with heart
Our People Attributes
Our People Attributes are characteristics that describe the DNA of Capitolis employees. They provide a consistent framework to hire, assess, and develop our team against. Learn more about our People Attributes on our careers page here.
- Super Smart: quality thinking and know what good looks like
- Badass: all in, get stuff done, and high standards
- Good Human: collaborative, open-minded, authentic and real, and pursue self-actualization