NICOLL CURTIN TECHNOLOGY PTE. LTD.
We are seeking a skilled
DevOps Engineer
with expertise in
DevSecOps
to join our engineering team. This role will be responsible for designing, implementing, and maintaining secure and scalable CI/CD pipelines, embedding security practices throughout the software development lifecycle (SDLC), and driving automation initiatives to improve speed and reliability. Key Responsibilities Design, build, and manage CI/CD pipelines with integrated security checks and automated compliance controls. Implement DevSecOps best practices, including security scanning, vulnerability management, and threat modeling in the DevOps workflow. Collaborate with development, security, and operations teams to ensure secure coding and deployment practices. Automate infrastructure provisioning using IaC tools (Terraform, Ansible, CloudFormation, etc.). Monitor and maintain cloud environments (AWS, Azure, GCP) with a focus on security posture and cost optimization. Conduct regular security audits of pipelines, containers, and infrastructure. Integrate tools for SAST, DAST, and container scanning (e.g., SonarQube, OWASP ZAP, Aqua, Prisma Cloud). Champion a “shift-left” security culture, training and mentoring engineers on secure DevOps practices. Required Skills & Experience 4-8 years of experience in DevOps or related roles, with proven experience in DevSecOps. Strong understanding of CI/CD tools (e.g., Jenkins, GitLab CI/CD, GitHub Actions, ArgoCD). Experience with cloud platforms (AWS, Azure, or GCP) and their security services. Proficiency in containerization (Docker, Kubernetes) and securing containerized workloads. Knowledge of security frameworks and compliance standards (ISO 27001, SOC 2, NIST, etc.). Hands-on experience with security scanning tools for code, dependencies, and infrastructure. Familiarity with scripting/programming (Python, Bash, or similar) for automation. Strong problem-solving skills and the ability to collaborate across teams.
#J-18808-Ljbffr
DevOps Engineer
with expertise in
DevSecOps
to join our engineering team. This role will be responsible for designing, implementing, and maintaining secure and scalable CI/CD pipelines, embedding security practices throughout the software development lifecycle (SDLC), and driving automation initiatives to improve speed and reliability. Key Responsibilities Design, build, and manage CI/CD pipelines with integrated security checks and automated compliance controls. Implement DevSecOps best practices, including security scanning, vulnerability management, and threat modeling in the DevOps workflow. Collaborate with development, security, and operations teams to ensure secure coding and deployment practices. Automate infrastructure provisioning using IaC tools (Terraform, Ansible, CloudFormation, etc.). Monitor and maintain cloud environments (AWS, Azure, GCP) with a focus on security posture and cost optimization. Conduct regular security audits of pipelines, containers, and infrastructure. Integrate tools for SAST, DAST, and container scanning (e.g., SonarQube, OWASP ZAP, Aqua, Prisma Cloud). Champion a “shift-left” security culture, training and mentoring engineers on secure DevOps practices. Required Skills & Experience 4-8 years of experience in DevOps or related roles, with proven experience in DevSecOps. Strong understanding of CI/CD tools (e.g., Jenkins, GitLab CI/CD, GitHub Actions, ArgoCD). Experience with cloud platforms (AWS, Azure, or GCP) and their security services. Proficiency in containerization (Docker, Kubernetes) and securing containerized workloads. Knowledge of security frameworks and compliance standards (ISO 27001, SOC 2, NIST, etc.). Hands-on experience with security scanning tools for code, dependencies, and infrastructure. Familiarity with scripting/programming (Python, Bash, or similar) for automation. Strong problem-solving skills and the ability to collaborate across teams.
#J-18808-Ljbffr