Job description:
Responsibilities:
DevSecOps Engineering (CI/CD, Tools & Practices)
- Strong understanding of DevSecOps principles.
- Design, build, and maintain end‑to‑end CI/CD pipelines for application and platform deployments.
- Strong hands‑on experience with CI/CD tooling such as Jenkins, Redhat Ansible, Octopus, AWS CodePipeline, and source control platforms including Bitbucket or AWS CodeCommit.
- Automate build, test, security scanning, packaging, and deployment workflows across multiple environments.
- Develop and maintain reusable pipeline templates and automation frameworks to standardize delivery practices.
- Continuously improve delivery speed, reliability, quality, and developer experience through automation and best practices.
- Hands‑on experience with Red Hat Ansible for configuration management, provisioning, and automation.
- Manage artifacts, binaries, and dependencies using repositories such as JFrog Artifactory and Sonatype Nexus Repository.
- Strong understanding of artifact lifecycle management, dependency control, and versioning best practices.
- Embed security and quality controls into CI/CD pipelines, including:
- Static Application Security Testing (SAST) using tools such as Fortify.
- Code quality and secrets scanning using SonarQube.
- Software Composition Analysis (SCA), 3rd party / OSS libraries using Sonatype Nexus.
- Collaborate closely with Security, Risk, and Compliance, application teams to meet security standards and regulatory requirements.
- Automate security validations, policy enforcement, guardrails, and audit evidence collection across pipelines and cloud environments.
- Support audit, risk, and compliance activities through repeatable and automated controls.
Cloud & Platform Engineering (AWS)
- Build and operate cloud‑native CI/CD pipeline and automation workflows/solution on AWS.
- Hands-on experience in Terraform to build for provisioning, managing and automating cloud infrastructure using Infrastructure as Code (IaC) best practices.
- Design solution using multiple AWS services including:
- EC2, ECS/EKS, Lambda, IAM, VPC, ALB/NLB, S3, RDS, CodePipeline, CodeBuild, AWS Inspector, CloudWatch, Glue, etc.
- Design secure, scalable, and resilient cloud architectures aligned with operational and compliance requirements.
- Implement cloud automation for provisioning, configuration, scaling, and lifecycle management.
Automation, Reliability & Operational Excellence
- Design automation with reliability, security, and scalability in mind (idempotency, error handling, retries, rollback).
- Automate manual operational tasks to reduce toil and improve system reliability.
- Implement logging, monitoring, and alerting for automation to ensure visibility and maintainability.
- Apply Infrastructure / Operations automation principles (e.g. configuration-driven automation, version control, code reviews).
- Work together with various team to identify automation opportunities.
- Proficiency in automation and scripting, particularly using Python and Unix shell scripting.
AI‑Driven & Future Capabilities
- Drive adoption of AI across teams by identifying practical use cases and integrating AI capabilities into everyday workflows to improve productivity, quality and operational efficiency by leveraging AI Assisted tools.
- Identify, prototype, and scale AI‑driven solutions that streamline workflows, reduce manual effort, and accelerate delivery.
- Work with multiple teams to promote effective, responsible, and secure usage of AI technologies.
General
- Collaborate with various team, eg. application, infrastructure, security, operations, product, IT Service Management team, IT Governance, Risk & Compliance, or Auditor.
- Handle audit and risk activities from MAS, Group audit, Risk & Compliance, and 3rd party auditor.
- Prepare and update Automation and DevSecOps documentations, knowledgebase, SOP, best practices as required.
- Liaise with vendor to discuss on the requirements, solutioning and validating the implementation.
Requirements:
Education
- Bachelor’s degree in information technology, Computer Science, or a related field.
Skils and Knowledge
Minimum 5 years of hands-on experience in the following technical areas:
- Solid understanding of Automation and DevSecOps principles.
- Strong hands‑on experience with CI/CD tools (Bitbucket, Jenkins, Ansible, Octopus, JFrog, Sonatype Nexus, Sonatype Sonarqube, Fortify, AWS Cloudcommit, AWS Codepipeline).
- Experience in refining DevSecOps overall flow for seamless CI/CD pipeline with CI/CD tools.
- Strong experience working in AWS cloud environments.
- Scripting and automation skills using Python, Unix Shell Scripting, or others.
- Ability to design scalable, reusable, resilience and secure automation solutions.
- Good understanding or hands on experience with Kubernetes or microservices containerization.
- Strong troubleshooting skills and ability to translate operational pain points into automation or AI use cases.
- Experience with Elasticsearch, including designing and building Kibana dashboards to enable monitoring and actionable operational insights will be an advantage.
Behavioural Competencies & Personal Attributes
- Strong communication and stakeholder engagement skills, with the ability to translate complex requirement into a working solution.
- Strong sense of ownership and accountability, with a high level of commitment to delivery, quality, and outcomes.
- Proactive, self‑motivated, and growth‑oriented, with a passion for continuous improvement and innovation.
- Demonstrated analytical and problem‑solving skills, with the ability to identify issues, assess impact, and drive resolution.
- Excellent follow‑up and follow‑through, ensuring end‑to‑end execution and adherence to committed timelines.
- Able to work effectively independently and within cross‑functional teams in fast‑paced environments.
- Collaborative team player with strong interpersonal skills and a focus on building trusted working relationships.
Preferred Certifications
- AWS Certified DevOps Engineer
- Certified Professional in Python Programming
- Red Hat Enterprise Linux Automation with Ansible