DevSecOps Engineer



Software Engineering
Copenhagen, Denmark · London, UK · Berlin, Germany · Copenhagen, Denmark · London, UK · Madrid, Spain · Berlin, Germany
Posted on Tuesday, April 23, 2024

Here at Pleo, our customer base is growing with Sonic.gif speed! This is amazing yet the larger we become, the bigger the temptation for the less lawful sides of society. As a FinTech, we directly handle money for our customers and see the most incidents across all industries. We’re not only about protecting users from password leaks where malicious actors post cat videos to your SoMe account, this is about protecting our customers' money and data. This is where you come in!

The DevSecOps role focuses on the pipeline tooling and infrastructure/cloud hardening side of security. We strive to shift left work on hardening our application and ensuring we build golden paths. We're looking for someone to be part of improving this specialization and bring opinionated insight.

To give you a better idea, here are some tasks you might do as a DevSecOps Engineer at Pleo.

Help our engineering teams build secure solutions by automating guardrails throughout our entire pipeline. You’ll put in place Infrastructure as Code security policies to improve auto-remediation for issues and only when required to help developers on remediation;

  • Assist the team with diving into various security subjects related to hardening our Kubernetes & AWS infrastructure at Pleo. Then design, implement and give your recommendation on actions;
  • Working with our Platform team to create automated continuous integration (CI) and continuous delivery (CD) around security checks;
  • Be a core contributor in projects related to security automation.

To make it clear, we're not building a security team to take over all security-related tasks. We're building a team of specialists that support other teams through platform building, investigations, and coaching.

There will be a lot of flexibility in this role depending on your interests and skills, but as an Engineering role you will:

  • Help operationalize, rank, and manage our pipeline security roadmap.
  • Take part in the planning and focus on the execution of projects related to our security objectives.
  • Balance controls implementation against our data classifications while providing tactful friction to meet the needs of the company.

We don’t expect a perfect match in technology and skills. What's important is that you have a passion for the field, you are willing to expand your knowledge, and that you enjoy the responsibilities that come along with the role.

If this philosophy resonates with you, we'd love to meet you, so click apply!

Your profile

  • You recognize that communication is a core part of your job as a security engineer at Pleo.
  • You are eager to discuss complicated cloud security topics with technical colleagues.
  • You are pragmatic in your approach to security. A door that no one can unlock is very secure, but it's also no longer a door.
  • Security isn't black magic, it's a matter of understanding complex systems and applying creative thinking to interesting problems.
  • You love learning new things and enjoy working with problem areas you aren't an expert in (yet).
  • You are honest and unafraid to state things exactly like they are acknowledging and communicating what's broken is the first step to fixing things.

The nitty-gritty skills

  • You are comfortable with at least one programming language (Python, TypeScript, Kotlin, Golang) and have foundations with application development.
  • Experience with fully automating CI/CD pipelines security checks end-to-end, from code commits to production;
  • Solid experience in hardening, configuring and troubleshooting Kubernetes and AWS environments;
  • Cloud Service Knowledge. You understand how to secure all the "meshy" things from sidecars, microservices to service mesh, and you are familiar with the cloud shared responsibility model. You're comfortable balancing the tradeoff considerations with regard to cost, security, and deployment complexity.

Nice to have skills

  • Java or Kotlin proficiency and experience with securing applications running on JVM.
  • Experience with PCI DSS, GDPR, or PSD2 technical requirements such as proper network segmentation and authorization mechanism.


We don't really care about certificates, degrees, and all that jazz. However, we won't penalize you for talking about your super relevant degree in information security or showing off your brand-new certificate. We also don't need you to have x years of experience in information security, but would of course love for you to tell us about any experience that you think is relevant for the job.

Your colleagues say that you

  • Have an aversion to human in the loop processes
  • Could easily be a hacker in your free time
  • Never forget to lock your laptop
  • Dropped an unattended USB-drive and waited for someone to plug it in and inadvertently realize they have a new keyboard that had specific ideas in mind..

Show me the benefits

  • Your own Pleo card (no more out-of-pocket spending!)
  • Lunch is on us - with catering in our Lisbon, Copenhagen and London offices or a monthly lunch allowance paid directly together with your salary in other markets 🍜
  • Private health insurance to ensure you’re fit in body and mind to do your best work
  • Option to purchase 5 additional days of holiday through a salary sacrifice
  • Wellbeing days - fully paid days off designed for a slower pace, allowing you to take time to recharge and prioritise self-care
  • We’re trialling MyndUp to give our employees access to free mental health and wellbeing support with great success so far ❤️‍🩹
  • Access to LinkedIn Learning - acquire new skills, stay abreast of industry trends and fuel your personal and professional development continuously
  • Paid parental leave - we want to make sure that we're supportive of families and help you feel that you don't have to compromise your family due to work 👶
  • All of us have a stake in Pleo’s success - ask us about our equity grant scheme


Why join us?

Working at Pleo means you're working on something very exciting: the future of work. Our mission is to help every company go beyond the books. Pleo itself means ‘more than you’d expect’, and it’s been the secret to our success over the last 8 years. So it’s only fitting that we’d pass this philosophy onto our customers to help them make the most of their finances.

We think company spending should be delegated to all employees and teams, that it should be as automated as possible, and that it should drive a culture of responsible spending. Finance teams shouldn’t be siloed from the rest of the organisation – they should work in unity with marketing, sales, IT and everyone else.

Speaking of working in unity, our values tell the story of how we work at Pleo. We have four core values, the first of which is ‘champion the customer’, which means we address real pain points that businesses face. Next up is ‘succeed as a team’, which highlights how our strength lies in our diversity and trust in each other. We also ‘make it happen’ by taking bold decisions and following through to deliver results. Last but not least, we ‘build to scale’, creating lasting solutions that address today’s challenges and anticipate tomorrow’s needs.

So, in a nutshell, that's Pleo. Today we are a 850+ team, from over 100 nations, sitting in our Copenhagen HQ, London, Stockholm, Berlin, Madrid, Montreal and Lisbon offices —and quite a few full-time remotes in 35 other countries! Being HQ'd out of Copenhagen means we're inspired by things like a good work-life balance. If you don't work in the office with us, we'll help you set up the best remote setup possible and make sure you still have time to connect with your team.

About your application

  • Please submit your application in English; it’s our company language so you’ll be speaking lots of it if you join 💕
  • We treat all candidates equally: If you are interested please apply through our application system - any correspondence should come from there! Our lovely support isn't able to pass on any calls/ emails our way - and this makes sure that the candidate experience is smooth and fair to everyone 😊
  • We’re on a mission to make everyone feel valued at work. That’s only achievable if our team reflects the diversity of the world around us - and that starts with you, hitting apply, even if you are worried you might not tick all the boxes! We embrace and encourage people from all backgrounds to apply - regardless of race/ethnicity, colour, religion, nationality, gender, sex, sexual orientation, age, marital status, disability, neurodiversity, socio-economic status, culture or beliefs.
  • When you submit an application we process your personal data as a data processor. Find out more about how your data is used in the FAQs section at the bottom of our jobs page.