About the Role 
As a Software Engineer at LHV, you’ll help build and maintain the systems that power our Retail Banking Platform. You’ll design and develop scalable backend services, work with modern cloud-native technologies, and contribute to the continuous improvement of our engineering practices. This role is ideal for someone who enjoys solving technical challenges, collaborating across teams, and writing clean, reliable code that delivers real value to customers.

Key Responsibilities: 

Software Development: 

• Design, develop, and maintain services that support LHV’s Retail Banking platform and third-party integrations.
• Write clean, efficient, and maintainable code, following best practices and team standards.
• Take ownership of mid-sized features from design through to deployment.
• Participate in code reviews, providing and receiving constructive feedback. 

Testing & Reliability: 

• Write and maintain unit and integration tests to ensure reliability of services.
• Debug and resolve issues in distributed systems.
• Contribute to improvements in automation, testing, and CI/CD pipelines. 

Collaboration & Communication: 

• Work closely with product owners, analysts, and engineers to deliver high-quality solutions.
• Contribute to technical discussions, proposing improvements in design, architecture, or processes.
• Mentor junior engineers, sharing knowledge and supporting their growth.
• Communicate progress, risks, and challenges effectively with stakeholders. 

Learning & Growth: 

• Stay up to date with modern tools, frameworks, and industry best practices.
• Build knowledge of financial services and regulated environments.
• Actively participate in team knowledge-sharing and retrospectives. 

Required Skills: 

Essential 

• Solid experience in software engineering, ideally with backend systems. 
• Proficiency in Kotlin or Java with willingness to upskill to Kotlin. 
• Confident with different types and levels of data stores, such as Cache, SQS and NoSql.  
• Familiarity with cloud environments, ideally AWS. 
• Experience with distributed systems and containerised applications (e.g., Kubernetes). 
• Understanding of DevOps practices and CI/CD pipelines. 
• Strong debugging and problem-solving skills. 
• Good communication skills and a collaborative, team-first mindset. 

Desirable 

• Experience with gRPC or other service-to-service communication frameworks. 
• Exposure to AWS services such as EventBridge, Step Functions, SQS, DynamoDB or Lambda. 
• Some experience with JavaScript/TypeScript (useful for AWS Lambdas). 
• Experience with Github Actions. 
• Background in financial services or regulated industries. 
• Interest in system scalability, resilience, and continuous improvement. 

What we’re looking for 

• Doer mindset – you like to make progress, not just plans. 

• Product-oriented – you care about building systems that solve real user problems. 

• Curious and hungry – you want to keep learning and pushing boundaries. 

• Team-first – you thrive on collaboration and shared ownership. 

The Opportunity 

The DevSecOps Engineer role has been created to embed security into our engineering, DevOps and cloud delivery pipelines. Working closely with our Development, DevOps, Infrastructure and Security teams, you will engineer, automate and maintain security controls across our CI/CD pipelines, cloud workloads and application lifecycle. 

This position is critical in uplifting our secure by design practices, reducing vulnerabilities, and ensuring our rapidly evolving development environments adhere to best-in-class security standards. (Infosec presentations highlight the explicit gap for DevSecOps capability and security integration into Dev and Cloud projects).

Key Responsibilities

• Integrate security controls into CI/CD pipelines (Azure DevOps, GitHub Actions, Jenkins or equivalent). 
• Implement automated SAST, SCA, DAST, container scanning and secrets management controls. (Referenced in secure development lifecycle expectations.)   
• Work with Development and DevOps teams to ensure secure design principles, threat modelling and secure coding practices are embedded early in the lifecycle. 
• Engineer and maintain tooling for vulnerability management across code, containers, pipelines and cloud workloads. 
• Automate security guardrails across Azure resources, Kubernetes clusters, API gateways, serverless workloads and service meshes. 
• Support and enhance the deployment of security policies (IAM, key vaults, network controls, hardening baselines). 
• Partner with engineering squads to review architecture changes and ensure security requirements are addressed. 
• Contribute to incident response activities where application or pipeline security is implicated. 
• Contribute to uplift of our secure engineering policies, developer training and SSDLC processes. (Supports expectations stated in internal assessments and training docs).

Requirements:

• Experienced in DevOps or platform engineering with a strong security mindset. 
• Hands-on experience with at least one CI/CD platform (Azure DevOps preferred). 
• Good understanding of application security principles (OWASP Top 10, SANS/CWE Top 25). 
• Experience integrating or running security scanners: SAST, SCA, DAST, container scanning, IaC scanning. 
• Experience with infrastructure as code (Terraform, ARM/Bicep, Helm). 
• Familiar with cloud security (preferably Azure) and container security best practices. 
• Capable of supporting vulnerability management processes and remediation workflows. 
• Ability to collaborate with Software Engineering, DevOps, SRE, Cloud and Security teams. 
• Strong communicator able to translate risk into engineering friendly language. 

Nice to Have:

• Kubernetes (AKS), service mesh, container runtime security. 
• Experience integrating security telemetry into SIEM/SOAR pipelines. 
• Exposure to Zero Trust design principles. 
• Threat modelling and automated security testing frameworks. 

The Opportunity 

The DevSecOps Engineer role has been created to embed security into our engineering, DevOps and cloud delivery pipelines. Working closely with our Development, DevOps, Infrastructure and Security teams, you will engineer, automate and maintain security controls across our CI/CD pipelines, cloud workloads and application lifecycle. 

This position is critical in uplifting our secure by design practices, reducing vulnerabilities, and ensuring our rapidly evolving development environments adhere to best-in-class security standards. (Infosec presentations highlight the explicit gap for DevSecOps capability and security integration into Dev and Cloud projects).

Key Responsibilities

• Integrate security controls into CI/CD pipelines (Azure DevOps, GitHub Actions, Jenkins or equivalent). 
• Implement automated SAST, SCA, DAST, container scanning and secrets management controls. (Referenced in secure development lifecycle expectations.)   
• Work with Development and DevOps teams to ensure secure design principles, threat modelling and secure coding practices are embedded early in the lifecycle. 
• Engineer and maintain tooling for vulnerability management across code, containers, pipelines and cloud workloads. 
• Automate security guardrails across Azure resources, Kubernetes clusters, API gateways, serverless workloads and service meshes. 
• Support and enhance the deployment of security policies (IAM, key vaults, network controls, hardening baselines). 
• Partner with engineering squads to review architecture changes and ensure security requirements are addressed. 
• Contribute to incident response activities where application or pipeline security is implicated. 
• Contribute to uplift of our secure engineering policies, developer training and SSDLC processes. (Supports expectations stated in internal assessments and training docs).

Requirements:

• Experienced in DevOps or platform engineering with a strong security mindset. 
• Hands-on experience with at least one CI/CD platform (Azure DevOps preferred). 
• Good understanding of application security principles (OWASP Top 10, SANS/CWE Top 25). 
• Experience integrating or running security scanners: SAST, SCA, DAST, container scanning, IaC scanning. 
• Experience with infrastructure as code (Terraform, ARM/Bicep, Helm). 
• Familiar with cloud security (preferably Azure) and container security best practices. 
• Capable of supporting vulnerability management processes and remediation workflows. 
• Ability to collaborate with Software Engineering, DevOps, SRE, Cloud and Security teams. 
• Strong communicator able to translate risk into engineering friendly language. 

Nice to Have:

• Kubernetes (AKS), service mesh, container runtime security. 
• Experience integrating security telemetry into SIEM/SOAR pipelines. 
• Exposure to Zero Trust design principles. 
• Threat modelling and automated security testing frameworks. 

The Opportunity 

The DevSecOps Engineer role has been created to embed security into our engineering, DevOps and cloud delivery pipelines. Working closely with our Development, DevOps, Infrastructure and Security teams, you will engineer, automate and maintain security controls across our CI/CD pipelines, cloud workloads and application lifecycle. 

This position is critical in uplifting our secure by design practices, reducing vulnerabilities, and ensuring our rapidly evolving development environments adhere to best-in-class security standards. (Infosec presentations highlight the explicit gap for DevSecOps capability and security integration into Dev and Cloud projects).

Key Responsibilities

• Integrate security controls into CI/CD pipelines (Azure DevOps, GitHub Actions, Jenkins or equivalent). 
• Implement automated SAST, SCA, DAST, container scanning and secrets management controls. (Referenced in secure development lifecycle expectations.)   
• Work with Development and DevOps teams to ensure secure design principles, threat modelling and secure coding practices are embedded early in the lifecycle. 
• Engineer and maintain tooling for vulnerability management across code, containers, pipelines and cloud workloads. 
• Automate security guardrails across Azure resources, Kubernetes clusters, API gateways, serverless workloads and service meshes. 
• Support and enhance the deployment of security policies (IAM, key vaults, network controls, hardening baselines). 
• Partner with engineering squads to review architecture changes and ensure security requirements are addressed. 
• Contribute to incident response activities where application or pipeline security is implicated. 
• Contribute to uplift of our secure engineering policies, developer training and SSDLC processes. (Supports expectations stated in internal assessments and training docs).

Requirements:

• Experienced in DevOps or platform engineering with a strong security mindset. 
• Hands-on experience with at least one CI/CD platform (Azure DevOps preferred). 
• Good understanding of application security principles (OWASP Top 10, SANS/CWE Top 25). 
• Experience integrating or running security scanners: SAST, SCA, DAST, container scanning, IaC scanning. 
• Experience with infrastructure as code (Terraform, ARM/Bicep, Helm). 
• Familiar with cloud security (preferably Azure) and container security best practices. 
• Capable of supporting vulnerability management processes and remediation workflows. 
• Ability to collaborate with Software Engineering, DevOps, SRE, Cloud and Security teams. 
• Strong communicator able to translate risk into engineering friendly language. 

Nice to Have:

• Kubernetes (AKS), service mesh, container runtime security. 
• Experience integrating security telemetry into SIEM/SOAR pipelines. 
• Exposure to Zero Trust design principles. 
• Threat modelling and automated security testing frameworks.