DevSecOps Engineer

We are looking for a DevSecOps Engineer to join our client's team and help us deliver efficient, secure and high-quality software products. You will work closely with developers, it security and operations staff to implement automated builds, quality scanning, security testing tools and processes, deploy and manage code changes, monitor and troubleshoot system issues, build integrations that enhance user experience, and educate users on how to use application security features. You will also contribute to improving our engineering culture by following best practices and standards.

Familiarity with devsecops/devops practices in cloud, container and monolithic environments are necessary skills to be successful in this job. Resourcefulness is a necessary skill in this role, you should be able to diagnose and resolve problems quickly and have the patience to communicate with a wide variety of teams and end users of different disciplines and skill levels.

Key Responsibilities

A DevSecOps engineer is a professional who combines development, operations, and security skills to deliver software products that are secure, reliable, and efficient

• Designing, building, testing, and maintaining the continuous integration and continuous delivery (CI/CD) process
• Evaluating, choosing the right tools and technologies the team requires to optimize delivery.
• Automating different phases of the DevOps pipeline.
• Leveraging on pipeline automation & quality gates to shift left quality and security scanning.
• Working with developers and operations staff to implement DevOps and security best practices throughout the software development lifecycle.

Responsibilities

In addition to the key responsibilities described above, your responsibilities would also include the following:

• Build internal documentation and manuals for users.
• Implementing and maintaining automated devsecops tools and processes throughout the software development lifecycle.
• Collaborating with developers and operations staff to ensure that code changes are deployed and managed smoothly.
• Monitoring and troubleshooting system performance, outages, availability, and security issues.
• Building integrations that improve user experience and functionality.
• Educating developers, users and stakeholders on how to use and leverage on automation features.
• Evaluate cloud based system offerings and features and determine if the features fit internal requirements
• Work with internal stakeholders to optimize and improve current procedures and processes for DevSecOps.
• Add, change, and/or delete users and/or objects to the collaboration platform (BAU operations)
• Collaborate with ITSM and Integrated Developer Platform teams to deliver an end to end automated delivery.

Requirements & Skills

• A bachelors degree in computer science, engineering, or a related field
• Experience working as a devops/devsecops engineer or a similar role for both web or mobile base app
• Knowledge of various security testing tools such as SAST, DAST, IAST, RASP etc.
• Proficiency in scripting languages such as Python, Ruby etc.
• Familiarity with cloud platforms such as AWS, Azure, Huawei etc.
• Experience with CI/CD tools such as GitHub Actions, Jenkins, GitLab, SonarQube, Nexus etc.
• Experience with container technologies such as Docker, Kubernetes etc.
• Experience with IAC and configuration systems such as Ansible and Terraform
• Excellent communication and collaboration skills
• Resourcefulness and problem-solving aptitude
• Excellent communication skills in English (other ASEAN languages a bonus)
• Agile mind-set and a focus on delivering continuous improvements