We are looking for a hands-on Senior DevSecOps Engineer to embed security into build, deployment, and runtime environments across cloud and on-prem platforms. This role focuses on automation, secure-by-design pipelines, and cloud-native security, working closely with developers, platform engineers, and security teams to enable fast, safe delivery.
This is a builder role, ideal for someone who enjoys automation, infrastructure, and security engineering, and wants to make security frictionless for engineering teams.
Responsibilities:
DevSecOps & CI/CD Security
- Design, build, and maintain secure CI/CD pipelines with embedded security controls (SAST, SCA, secrets scanning, IaC scanning).
- Integrate security checks into build and release pipelines while minimising developer friction.
- Implement secure build, test, and release gates aligned to organisational risk appetite.
Cloud & Platform Security
- Support secure deployment and operations of applications across cloud environments (AWS / Azure / GCP).
- Apply security best practices across IAM, networking, logging, monitoring, and encryption.
- Work with container platforms (Docker, Kubernetes) to enforce runtime security and configuration hardening.
Infrastructure as Code & Automation
- Build and maintain Infrastructure as Code (IaC) using tools such as Terraform, ARM, CloudFormation, or similar.
- Ensure IaC templates follow secure-by-default patterns and are auditable and reusable.
- Automate security configuration and compliance checks where possible.
Security Tooling & Observability
- Integrate and tune security tools (e.g. SAST, DAST, SCA, CSPM, container scanning).
- Improve visibility through logging, metrics, and monitoring for security-relevant events.
- Support incident response by providing pipeline, deployment, and runtime insights.
Collaboration & Enablement
- Partner closely with software engineers, platform teams, and security architects.
- Provide practical guidance to developers on secure coding, pipeline usage, and remediation.
- Contribute to documentation, standards, and reusable DevSecOps patterns.
Requirements:
- 3-10 years of hands-on experience in DevOps, DevSecOps, or Security Engineering roles.
- Strong experience with CI/CD pipelines (GitHub Actions, GitLab CI, Azure DevOps, Jenkins, etc.).
- Solid understanding of cloud platforms (AWS, Azure, or GCP).
- Experience with containers and orchestration (Docker, Kubernetes).
- Familiarity with security tooling such as SAST, SCA, secrets scanning, IaC scanning.
- Good working knowledge of Linux, networking basics, and application deployment.
To apply:
If you're interested to apply or find out more, please share across your CV or reach out to Chen Yi at [Confidential Information] for a discussion. Due to anticipated high volume of applications, we regret to inform that only shortlisted candidates will be notified.
Reg: R1876389
Lic: 16S8060
