DevSecOps Engineer

This is Adyen

Adyen provides payments, data, and financial products in a single solution for customers like Meta, Uber, H&M, and Microsoft - making us the financial technology platform of choice. At Adyen, everything we do is engineered for ambition. 

For our teams, we create an environment with opportunities for our people to succeed, backed by the culture and support to ensure they are enabled to truly own their careers. We are motivated individuals who tackle unique technical challenges at scale and solve them as a team. Together, we deliver innovative and ethical solutions that help businesses achieve their ambitions faster.

DevSecOps Engineer

We are searching for a DevSecOps Engineer that will enhance the security measures in our Secure Software Development Lifecycle (SSDLC). In this second line function, you will drive implementation on existing and new techniques to support our development pipelines. Think of Continuous Integration, Security Testing (SAST, DAST, IAST, and RASP), Compliance Pipelines, Secret management, SCA and Dependency Management and Policies (OPA/Kyverno).

What you’ll do

• Together with our engineering organization, develop a desired future state for our development pipelines: where are we heading and which are the right tools, decisions, and techniques that should be included in this future state?
• Assess, design and implement controls and technologies in our SDLC pipelines.
• Develop the capabilities to operate and manage these technologies in the engineering teams.
• Perform (tool-assisted) code-reviews in critical Adyen frameworks and flows to identify vulnerabilities in it, and help engineering teams fix it properly: helping ensure there are no regressions.
• Identify structural improvement opportunities and recurring findings to train developers on recurring issues.

Who you are

• At least 5 years of experience in implementing and operating technologies in the Secure Software Development Lifecycle, including manual code reviews, SAST, DAST, IAST, RASP, dependency management, SCA and secret management.
• Someone who worked together with the CI/CD team, in implementing new security technology in the pipeline.
• Experienced in developing a high-level technical understanding of the platform and products.
• A team player with a strong security mindset to maintain and mature Adyen's security posture.
• Ability to drive change, by leading discussions, writing decision records and persuading key stakeholders in the organization.

Our Diversity, Equity and Inclusion commitments 

Our unique approach is a product of our diverse perspectives. This diversity of backgrounds and cultures is essential in helping us maintain our momentum. Our business and technical challenges are unique, and we need as many different voices as possible to join us in solving them - voices like yours. No matter who you are or where you’re from, we welcome you to be your true self at Adyen. 

Studies show that women and members of underrepresented communities apply for jobs only if they meet 100% of the qualifications. Does this sound like you? If so, Adyen encourages you to reconsider and apply. We look forward to your application!

What’s next?

Ensuring a smooth and enjoyable candidate experience is critical for us. We aim to get back to you regarding your application within 5 business days. Our interview process tends to take about 4 weeks to complete, but may fluctuate depending on the role. Learn more about our hiring process here. Don’t be afraid to let us know if you need more flexibility.

This role is based out of our Amsterdam office. We are an office-first company and value in-person collaboration; we do not offer remote-only roles.