全职 DevSecOps Engineer 工作, 薪水, Ascend Asia Corporate Services 公司招聘中 - Ricebowl

WHAT TO EXPECT

This role emphasizes building secure, scalable infrastructure on AWS ECS using CloudFormation, managing complex data migrations, and contributing to application development when needed.It also requires you to work across multiple technology stacks and programming languages.

WHAT YOU'LL DO

DevSecOps & Infrastructure (Primary Focus - 70%):

• Design, implement, and maintain CI/CD pipelines with integrated security scanning and automated testing
• Write and optimize Dockerfiles, docker-compose configurations, and ECS task definitions
• Manage and optimize AWS ECS clusters (EC2 and Fargate), including service discovery, load balancing, and auto-scaling
• Build and maintain infrastructure as code using CloudFormation create templates, manage stacks, implement nested stacks and StackSets
• Integrate security tools throughout the development lifecycle (SAST, DAST, SCA, container scanning)
• Implement and manage secrets, certificates, and IAM policies using AWS services and tools like HashiCorp Vault
• Set up and maintain monitoring, logging, and alerting solutions (CloudWatch, Prometheus, Grafana, ELK stack)
• Automate infrastructure provisioning, configuration management, and deployment workflows
• Conduct security assessments and implement remediation strategies for infrastructure and applications
• Manage and troubleshoot AWS networking components (VPCs, security groups, NAT gateways, load balancers)

Full Stack Development (Secondary Focus - 30%):

• Troubleshoot and debug applications across different technology stacks
• Quickly learn and adapt to new programming languages and frameworks as needed
• Develop automation scripts and tools to improve team efficiency

Key Deliverables / KPIS

• Stable and secure CI/CD pipelines
• Infrastructure uptime and scalability
• Successful security audits and remediation
• Deployment reliability and reduced incidents

WHO YOU ARE

• Bachelor’s degree in Computer Science or related field
• 4–6+ years in DevOps / DevSecOps / SRE roles
• Strong AWS (ECS, EC2, RDS, IAM, VPC)
• CloudFormation expertise
• Docker and container security
• CI/CD tools (GitHub Actions, Jenkins)
• Security tools (Snyk, Trivy, SonarQube)