Deskripsi Pekerjaan
Are you a security-minded technologist passionate about bridging the gap between development and operations? Beyondsoft is looking for a skilled DevSecOps Engineer to join our dynamic team in Shah Alam. In this role, you will be the architect of secure software delivery pipelines, ensuring that security is integrated into every stage of the CI/CD lifecycle.
We are seeking a hands-on professional who thrives on automation, excels in cloud-native environments, and believes that security is a shared responsibility. You will play a pivotal role in hardening our infrastructure, optimizing Kubernetes deployments, and fostering a culture of 'Security by Design' across our engineering squads. If you are ready to tackle complex challenges and drive technological excellence, we want to hear from you.
Tanggung Jawab
- Design, implement, and maintain secure CI/CD pipelines that incorporate automated security scanning (SAST/DAST).
- Manage and scale containerized environments using Kubernetes, ensuring optimal performance and security compliance.
- Collaborate with development teams to identify vulnerabilities and provide remediation strategies.
- Develop and maintain Infrastructure as Code (IaC) using tools like Terraform or CloudFormation.
- Implement proactive monitoring, logging, and incident response workflows to ensure system availability and data integrity.
- Automate operational tasks to reduce manual intervention and improve system reliability.
- Conduct regular security audits and threat modeling exercises for cloud infrastructure.
Kualifikasi
- Bachelor’s degree in Computer Science, Information Technology, or a related field.
- Minimum 3-5 years of experience in DevOps, Site Reliability Engineering, or a dedicated security role.
- Strong expertise in container orchestration (Kubernetes) and cloud platforms (AWS, Azure, or GCP).
- Hands-on experience with CI/CD tools such as Jenkins, GitLab CI, or GitHub Actions.
- Proficiency in scripting languages like Python, Bash, or Go for automation purposes.
- Solid understanding of security best practices, including DevSecOps methodologies and application security (AppSec).
- Strong problem-solving skills and the ability to work effectively in an agile development environment.