Deskripsi Pekerjaan
We are seeking a highly skilled DevSecOps Engineer to join our dynamic team in Singapore River. This pivotal role focuses on building secure, scalable infrastructure that drives innovation while maintaining robust security postures. You will bridge development, operations, and security by implementing cutting-edge DevSecOps practices across our technology stack.
The ideal candidate will architect cloud-native solutions, automate security protocols, and foster a culture of continuous security improvement. You'll collaborate with cross-functional teams to embed security into every phase of the SDLC, ensuring our systems remain resilient against evolving threats while optimizing performance and scalability.
This position offers the opportunity to work with modern technologies in a fast-paced environment, where your expertise will directly impact our digital transformation journey. If you're passionate about balancing speed with security and thrive in collaborative settings, we encourage you to apply.
Tanggung Jawab
- Design, implement, and maintain secure, scalable infrastructure using IaC tools (Terraform, CloudFormation)
- Integrate security tooling into CI/CD pipelines (Jenkins, GitLab CI) for automated vulnerability scanning
- Develop and maintain container security solutions (Docker, Kubernetes, EKS/AKS)
- Implement infrastructure monitoring, logging, and alerting solutions (ELK Stack, Prometheus)
- Conduct security assessments and compliance audits (ISO 27001, NIST)
- Automate security workflows using scripting (Python, Bash) and configuration management
- Collaborate with development teams to secure application architectures and code
Kualifikasi
- Bachelor's degree in Computer Science, Information Security, or related field
- 3+ years of experience in DevOps or SecOps roles
- Expertise in cloud platforms (AWS/Azure/GCP) with security specialization
- Strong knowledge of CI/CD tools and infrastructure automation
- Experience with security frameworks (OWASP, MITRE ATT&CK)
- Certifications (CISSP, CISA, CKS, or AWS/Azure Security) preferred
- Proficiency in scripting languages and infrastructure as code