Best Egg, now part of Barclays, is a market-leading, tech-enabled financial platform helping people build financial confidence through innovative lending solutions and financial health tools. As a Barclays company, we combine the agility and customer focus of a fintech with the global reach, stability, and purpose of a leading financial institution—working together to create a better financial future for our customers and communities.
At Best Egg, you’ll find a culture grounded in our core values—putting people first, creating clarity, delivering with excellence —enhanced by Barclays’ commitment to integrity, inclusion, and long-term impact. Together, we empower our colleagues to challenge, innovate, and take ownership while making a meaningful difference in people’s financial lives.
With the strength of Barclays behind us, we offer expanded opportunities for growth, development, and career mobility across a global organization—while continuing to build the products and experiences that make Best Egg unique.
We’re looking for collaborative, curious problem-solvers who are excited to make an impact and grow with us.
We’re proud to be an equal opportunity employer committed to building a diverse and inclusive team.
The Job:
Join a fast-paced cloud infrastructure and application delivery team where security is embedded throughout the software lifecycle. As DevSecOps Engineer II, you will independently lead complex security engineering work across pipelines, cloud infrastructure, and runtime controls.
You will influence technical direction, improve reliability and risk posture, and drive measurable reduction of recurring security issues.
Engineers joining Best Egg’s Information Technology Organization can expect a culture centered on Continuous Delivery, Total Quality Management, Knowledge Sharing, Personal and Career Advancement, Empowerment, Innovation, and Collective Ownership.
Duties & Responsibilities
Lead advanced troubleshooting and resolution of complex DevSecOps incidents and platform failures.
Design and implement secure CI/CD patterns with strong policy enforcement and auditability.
Drive remediation programs for high-priority vulnerabilities and control gaps.
Implement scalable guardrails for secrets management, artifact integrity, and access governance.
Partner across teams to embed secure-by-design practices in delivery workflows.
Lead process improvements and define standards for secure engineering operations.
Coach engineers on secure coding, pipeline controls, and risk-based prioritization.
Support incident command activities for high-impact security events.
Participate in on-call rotation
Requirements
Required
Advanced proficiency in AWS, cloud security architecture and identity/access controls.
Strong experience securing CI/CD systems and deployment workflows at team scale.
Experience integrating multiple scanning and testing controls into release pipelines.
Strong knowledge of network security, endpoint hardening, and platform telemetry.
Proficiency in automation and scripting for policy enforcement and remediation.
Ability to lead multi-team technical initiatives with clear accountability.
Strong written and verbal communication with business and technical stakeholders.
Recommended
Advanced cloud security certification (AWS/Azure/GCP track).
Certification or strong experience in secure software delivery practices.
Hands-on experience with supply-chain frameworks such as SLSA or equivalent controls.
Skill Set
Operates independently on complex assignments with consistent accountability.
Provides informal leadership and mentorship for mid- and junior-level engineers.
Drives measurable process improvements in security, speed, and reliability.
Balances delivery urgency with risk reduction and operational stability.
Maintains deep awareness of evolving threats and defensive practices.
Success Metrics in First 90 Days
Establish access and working fluency across core repositories, cloud accounts, and security tooling required for the role.
Demonstrate ownership of assigned DevSecOps work with clear status communication and documented outcomes.
Deliver at least one measurable improvement to pipeline security, automation, or vulnerability risk reduction.
Participate effectively in incident response, triage, and post-incident follow-through appropriate to tier expectations.
Build productive relationships with engineering, security, and platform stakeholders while meeting sprint commitments.