Your mission We are seeking a highly skilled Senior DevSecOps Engineer to join our growing team and drive automation across our security operations. This role is key to enhancing the security posture of our infrastructure through automation of security processes such as vulnerability management, incident response, and detection engineering. The ideal candidate will have strong experience in automation, cloud security, DevSecOps, and infrastructure security, with a focus on minimising manual tasks and improving overall efficiency. In this role, you will: Design, implement, and maintain security automation solutions for infrastructure, applications, and cloud environments Automate tasks in security operations, including vulnerability management, security monitoring, incident response, detection engineering, and compliance checks Integrate security automation into CI/CD pipelines and cloud environments Monitor and improve the efficiency of security tools, including SIEM (Elastic preferred) and EDR (CrowdStrike preferred) Utilize Infrastructure as Code (IaC) tools like Terraform and Ansible to manage secure and scalable infrastructure Implement and maintain automated workflows for threat detection and remediation using SIEM, EDR, and other security platforms Develop and fine-tune detection rules and alerts in security systems to improve threat detection capabilities Stay up-to-date with the latest security automation tools, best practices, and cloud security technologies Write and maintain clear documentation on security automation processes and implementations What you need to be successful: 5 years of experience in security automation, detection engineering, cloud security, and DevSecOps Strong proficiency in scripting languages (e.g., Bash, Python, Go) and automation tools Experience with Infrastructure as Code (IaC) using Terraform and Ansible for secure infrastructure management Hands-on experience with CI/CD tools like GitLab, integrating security automation into development workflows Proficiency in managing and automating security tools such as SIEM (Elastic preferred) and EDR (CrowdStrike preferred) Solid understanding of cloud security principles and best practices, especially with AWS Strong knowledge of vulnerability management, detection engineering, and security operations automation Excellent communication and collaboration skills, with the ability to work independently and as part of a team Experience documenting technical processes and solutions for diverse stakeholders Experience with microservice based architectures (is a plus) Certifications in cloud security or DevSecOps - AWS, Terraform etc. (is a plus) What’s in it for you: Accelerate your career growth by joining one of Europe's leading cryptocurrency management platforms 25 vacation days per year, with an additional day for each year of service - up to 30 days Access to cutting-edge technologies, high levels of autonomy, and international working environment Flexible working hours, hybrid work setup from both our Berlin and Porto offices Fitness (Urban Sports Club) and mental health (Likeminded) memberships Hot/cold drinks and snacks in the office, and All Hands meetings once a month with pizza About us Finoa is a regulated crypto asset platform for institutional investors co-founded in 2018 by Christopher May and Henrik Gebbing. The company came to life through the shared aspiration to make institutional interactions with crypto assets simple and secure, and is backed by prominent investors, including Balderton Capital, Coparion, Maven11, Signature Ventures, and Venture Stars. Finoa has since then grown into a truly international company, powered by a diverse team and serving high-profile clients from around the world. Reference clients include renowned venture capital firms, crypto hedge funds, corporates, Web3 companies, and high-net-worth individuals. If you want to join one of Europe’s most exciting crypto start-ups, be part of the next wave of innovation disrupting finance, and grow together with us, then this is your chance to apply. Finoa is an equal opportunity employer devoted to diversity and inclusion in the workplace. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, or disability status.