At ThetaRay, our purpose is to make the world a safer place by protecting the integrity of the global financial system.
We do this by putting AI at the core of both our technology and our way of working. Our AI-driven solutions help banks and fintech companies worldwide detect and stop serious financial crime, from human trafficking and terrorist financing to sophisticated money laundering, while advanced technology, automation, and AI-driven tools help our teams collaborate smarter, move faster, and continuously improve how we build, deliver, and innovate.
About the role:
We are looking for a DevSecOps Engineer to turn expertise, initiative, and bold thinking into real impact on the next generation of AI-driven financial crime detection.
If you combine strong security engineering and DevOps capabilities with hands-on experience in Kubernetes environments, vulnerability management, and secure CI/CD practices, and if you are motivated by strengthening the security and compliance posture of a cloud-native platform trusted by global financial institutions, ThetaRay could be your next challenge.
Responsibilities:
- Identify, analyze, prioritize, and remediate security vulnerabilities, including CVEs in containers, application dependencies, and infrastructure components.
- Work closely with engineering and DevOps teams to fix vulnerabilities across CI/CD pipelines, container images, Kubernetes workloads, and cloud infrastructure.
- Support and secure Kubernetes environments, preferably Azure Kubernetes Service (AKS), with experience in OpenShift Container Platform (OCP) considered an advantage.
- Implement and maintain security controls across cloud-native platforms, including container security, image scanning, runtime security, and Kubernetes hardening.
- Work with Static Code Analysis / SAST tools to identify code-level security risks and help development teams remediate findings.
- Work with CSPM tools to detect and resolve cloud security misconfigurations.
- Automate security, compliance, and operational tasks using Bash and other scripting tools.
- Support secure software delivery processes, including CI/CD security gates, vulnerability scans, policy enforcement, and compliance checks.
- Collaborate with global teams across different time zones to support security initiatives, incident response, and platform improvements.
- Promote DevSecOps best practices and help embed security into the software development lifecycle.
- Proven experience as a DevSecOps Engineer, DevOps Engineer with security focus, Cloud Security Engineer, or similar role.
- Hands-on experience handling CVEs, vulnerability remediation, patching, dependency upgrades, and risk prioritization.
- Strong experience with Kubernetes, preferably AKS; experience with OCP / OpenShift is a strong advantage.
- Strong hands-on experience with Linux systems, including troubleshooting, hardening, package management, permissions, services, networking, and logs.
- Solid experience writing and maintaining Bash scripts.
- Experience with Static Code Analysis tools such as SonarQube, Checkmarx, Veracode, Snyk Code, Semgrep, or similar.
- Experience with CSPM tools such as Prisma Cloud, Wiz, Microsoft Defender for Cloud, Orca, Lacework, or similar.
- Familiarity with container security tools and practices, including image scanning, base image management, secrets handling, and Kubernetes security policies.
Preferred Qualifications
- Experience working in a financial services, fintech, AML, compliance, or regulated SaaS environment.
- Familiarity with security standards and frameworks such as CIS Benchmarks, OWASP, NIST, ISO.
- Experience with Infrastructure as Code tools such as Terraform, Helm, Helmfile, Kustomize, or ArgoCD.
- Knowledge of SIEM, audit logging, and security monitoring platforms.
Personal Skills
- Strong team player with excellent collaboration skills.
- Able to work effectively with global and cross-functional teams.
- Proactive, responsible, and detail-oriented.
- Strong problem-solving skills and ability to drive issues to resolution.
- Good communication skills in English, both written and verbal.
- Security-minded approach with a willingness to learn and continuously improve.
Skills Required
- Proven experience as a DevSecOps Engineer, DevOps Engineer with security focus, Cloud Security Engineer
- Hands-on experience handling CVEs, vulnerability remediation, patching, dependency upgrades, risk prioritization
- Strong experience with Kubernetes, preferably AKS; experience with OCP is a strong advantage
- Strong hands-on experience with Linux systems, including troubleshooting and hardening
- Solid experience writing and maintaining Bash scripts
- Experience with Static Code Analysis tools
- Experience with CSPM tools
- Familiarity with container security tools and practices
- Understanding of cloud security concepts
- Experience working in CI/CD environments
What We Do
At ThetaRay, we believe that banks no longer have to de-risk when they can expand their cross-border ecosystem safely. ThetaRay is the developer of SONAR, a groundbreaking, AI-powered, transaction-monitoring SaaS solution for cross-border payments that allows banks to expand their business opportunities by achieving safe and reliable cross-border payment monitorisation. ThetaRay's technology is the only packaged SaaS offering that analyzes SWIFT traffic, risk indicators, and client/payer/payee data to detect anomalies indicating money laundering activity across complex, cross-border transaction paths. It is also one of the only AI-driven AML solutions that can be easily integrated and deployed within days, with minimal implementation required. ThetaRay's solution increases detection capabilities for both supervised and unsupervised data and includes profiling and advanced analytics assessments, all in one platform. Financial organizations that rely on highly heterogeneous and complex ecosystems benefit greatly from ThetaRay's unmatchable low false-positive rates.
