Job Title: DevSecOps Engineer

Location: Singapore (only candidates based in Singapore will be considered)

Job Description

The DevSecOps Engineer is responsible for designing, automating, and maintaining secure, scalable, and resilient infrastructure and deployment pipelines. The role requires expertise in cloud platforms, automation, security best practices, and modern DevOps methodologies. Engineers must work in an agile, collaborative environment, ensuring seamless integration of security into development workflows and infrastructure operations.

Responsibilities:

• Develop automation and processes to enable teams to deploy, manage, scale, and monitor applications in data centers and cloud environments.
• Troubleshoot and resolve system and application issues across platforms, including on-call escalations for critical incidents.
• Take ownership of end-to-end infrastructure and security solutions across the organization.
• Deploy and manage monitoring tools to track infrastructure performance, utilization, and health.
• Implement configuration management systems for business continuity and automate disaster recovery measures.
• Provision virtual machines, databases, application containers, and licenses for development teams.
• Configure and maintain CI/CD pipelines, incorporating streamlined change management and release processes.
• Develop scripts and automation tools to support software build, integration, and deployment across development and production environments.
• Automate configuration management for development, QA, and production workloads.
• Design, build, optimize, and monitor automation systems to maximize service availability.
• Implement security practices that comply with industry standards to protect organizational data and infrastructure.
• Plan, implement, and monitor system security architecture, including threat and risk assessments.
• Perform vulnerability assessments, system hardening, and troubleshoot security incidents.
• Apply secure configurations and best practices when implementing security controls.

Requirements:

• Degree or Diploma in Computer Science, Computer/Electronics Engineering, Information Technology, or related fields.
• Passion for automation, standardization, and best practices in infrastructure and security.
• Strong understanding of SDLC, TDD, CI/CD.
• Experience with high availability, high performance, and high-security multi-data center systems and hybrid cloud environments.
• Proficiency in at least three scripting/programming languages (Bash, PowerShell, Python, Go).
• Experience with Git and modern branching workflows.
• Hands-on experience with public cloud platforms (AWS, Azure, GCP).
• Experience with automated provisioning tools (Ansible, Terraform, Puppet, Vagrant).
• Experience with virtualization (KVM, VMware, Hyper-V).
• Strong knowledge of containers (Docker, Kubernetes).
• Familiarity with CNCF tools (Prometheus, Helm, ArgoCD, Istio, Gatekeeper, Crossplane).
• Experience with monitoring and observability tools.
• Strong troubleshooting skills across system resources and application stacks.
• Knowledge of CI/CD tools (GitLab, Jenkins, BitBucket, ArgoCD).
• Experience with disaster recovery planning, backup, and restore processes.
• Knowledge of RPM-based software packaging and deployment.

Security & Compliance:

• Experience implementing security controls within CI/CD pipelines and cloud-native architectures.
• Hands-on experience with vulnerability scanning, system hardening, and security assessments.
• Familiarity with enterprise security tools (HashiCorp Vault, ElasticSearch Enterprise, Tenable, HP Fortify, Sonatype Nexus IQ, AWS security services).
• Strong knowledge of networking (firewalls, subnets, routing, access controls).
• Experience performing security assessments in government or regulated environments.

Preferred / Added Advantage:

• Security certifications (CREST, CISSP, CISM, or relevant cloud security credentials).
• Experience in organizations with successful DevSecOps transformation.
• Knowledge of compliance frameworks (ISO 27001, NIST, CIS benchmarks).
• Hands-on experience with API security, secrets management, and zero-trust architectures.
• Knowledge of service mesh security implementations (Istio, Linkerd).
• Prior experience in government sector projects is highly preferred.