Deskripsi Pekerjaan
Are you a security-minded engineer who thrives at the intersection of development, operations, and cybersecurity? Ridik is looking for a talented DevSecOps Engineer to join our dynamic team in the Central Region. In this role, you will be the driving force behind the design, automation, and maintenance of our secure, scalable, and highly resilient infrastructure.
We are looking for a forward-thinking professional who understands that security is not just a checkbox, but an integral part of the CI/CD lifecycle. You will work closely with development and operations teams to implement security best practices from the ground up, ensuring our deployment pipelines are not only fast and efficient but also inherently secure against evolving threats. If you are passionate about automation, cloud-native technologies, and building robust systems, we want to hear from you.
Tanggung Jawab
- Design, implement, and maintain secure, scalable cloud infrastructure and CI/CD pipelines.
- Integrate automated security testing (SAST/DAST) into the deployment lifecycle.
- Collaborate with cross-functional teams to identify and remediate security vulnerabilities in real-time.
- Develop and manage Infrastructure as Code (IaC) using tools like Terraform or CloudFormation.
- Ensure compliance with security policies and industry best practices across all environments.
- Monitor system performance and security metrics, providing recommendations for continuous improvement.
- Manage incident response protocols and conduct root cause analysis for security-related system outages.
Kualifikasi
- Bachelor’s degree in Computer Science, Information Technology, or a related field.
- 3+ years of experience in DevSecOps, Site Reliability Engineering, or software development with a security focus.
- Strong proficiency in cloud platforms (AWS, Azure, or Google Cloud).
- Hands-on experience with containerization and orchestration (Docker, Kubernetes).
- Deep understanding of CI/CD pipeline tools (Jenkins, GitLab CI, or GitHub Actions).
- Proven expertise in Infrastructure as Code (IaC) and configuration management tools.
- Strong knowledge of security scanning tools and vulnerability management.
- Excellent communication and problem-solving skills with the ability to work in a collaborative environment.