Ho Chi Minh City, Ho Chi Minh City, Vietnam

Senior DevSecOps Engineer

 Job Description:

Job ref: QY7WRV79

People Profilers is hiring for a skilled Senior DevSecOps Engineer to work with the Security Partner in the client's Assurance Chapter to monitor and enhance their platform's security controls posture by offering a thorough technical understanding of security threats and potential vulnerabilities.

Responsibilities:

  • Assisting teams in achieving operational success through evidence collection and alignment with controls.
  • Helping Assurance teams and Security Partners find ways to automate the gathering of evidence.
  • Giving teams technical guidance on how to properly integrate security setups, including IAM, network policies, API authentication, and other cloud components.
  • Assisting the groups in creating safe CI and CD pipelines.
  • Assisting the security Partners in analyzing vulnerabilities and Pen-test results that may impact parts of the solution that aren't application-code-specific.
  • In assurance tooling, defining policies as code.
  • Running proof of concepts for trying new security tools and implementations.
  • Working with security engineers and penetration testers to help develop abuse cases and threat models.

Requirements:

  • At least 3-5 years of experience as a DevSecOps Engineer or similar roles.
  • Must-have solid experience in technical skills with Security + Platform/DevOps + Backend Development + Cloud.
  • Experience with cloud engineering and an understanding of cloud security requirements.
  • A thorough understanding of the software development process, CI/CD tools, and code reviews.
  • Ability to express policies and automation as code.
  • Contribute to Vulnerability Management findings, triage, and action suggestions.
  • Use your research and analysis abilities to find new security automation opportunities.
  • Be able to absorb and fully understand security requirements.
  • Ability to successfully communicate with both security and non-security stakeholders to solve everyday difficulties.

Note:

- Technical (practical, demonstrated hands-on experience): Cloud Platform, Application of Security Frameworks and Standards, DevOps, Cloud runtimes, Software Development

- Technical (strategic - conceptual and domain knowledge): Vulnerability Management, Identify Automation Opportunities, Architecture and Design, Software Design patterns


Please send your updated CV to vy.le@peopleprofilers.com if the role is relevant to your experience.

Due to the volume of applications, we regret that only shortlisted candidates will be notified.