Senior DevSecOps Engineer

JOB DESCRIPTION

Manage and execute security assessments for agile projects & ensure project timelines are met.
Identify opportunities to automate and standardize information security controls and for the supported groups
Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
Scan and analyze applications with automated tools, and perform manual testing if necessary
Collaborate with application teams to ensure that any identified security vulnerabilities are remediated in a timely manner.
Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behaviour, conduct and business
practices, and escalating, managing and reporting control issues with transparency.
Utilize Static & Dynamic Application Security Testing (SAST/DAST), Interactive Application Security Testing (IAST), and Component Vulnerability Management (CVM) tools such as Fortify, Snyk, BurpSuite, ZAP etc to uncover additional vulnerabilities 

JOB REQUIREMENT

Qualifications:
At least 5-7 years of relevant experience in DevSecOps (worked with tools in the area of Static Analysis, Dynamic Analysis, Container Analysis, Third Party Library analysis/Software Composition Analysis…)
Has experience in Pentesting in the area of infra/web/mobile/API
Consistently demonstrates clear and concise written and verbal communication.
Must have a strong understanding of Linux, Kubernetes, working knowledge of CI/CD process, Jira & Programming language Python for automation
Has exposure in Vulnerability Management
Education:
Bachelor’s degree/University degree or equivalent experience
Master’s degree preferred

WHAT'S ON OFFER

Why join with us
We build a professional & fun working environment.
We focus on your growth, yes the long-term growth.
We develop the future-ready digital bank platform.
Benefits
Competitive salary and bonus.
Opportunities for your professional growth in fintech, especially in digital banking 
Social insurance (max), premium medical insurance
Parking allowance, snacks, and coffee.
Monthly team-building and social activities.

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666
We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Outsource

Technical Skills:

Security, Devops

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Job ID:

J01215

Status:

Close

Related Job:

Head of Engineer - Tech Fraud & Scams VN

Ho Chi Minh

Product

Translate the Customer Onboarding and Mastery, Financial Crime and Fraud's strategic ambitions into an integrated roadmap for strategic execution, and drive this from shaping through to delivery Lead multiple engineering teams across Customer Onboarding and Mastery, Financial Crime and Fraud Domains to drive outcomes - hence Domain knowledge of these areas is desirable. Work closely with the business teams, product owners to validate requirements before and after delivery through showcases and Day 2 production monitoring Own not just the build, but the runtime of applications in production through active operational support, clearly defined support model with engineers proficient in site reliability engineering Own and lead the efforts of cyber security updates such as keeping software currency versions up to date, patch infrastructure every sprint Oversee investment delivery across CET to maintain alignment between Domains, ensure investment is spent effectively, and provide insights on effectiveness and prioritisation of spend

Negotiation

View details

Head of Engineer - CET

Ho Chi Minh - Viet Nam

Product

Translate the Customer Onboarding and Mastery, Financial Crime and Fraud's strategic ambitions into an integrated roadmap for strategic execution, and drive this from shaping through to delivery Lead multiple engineering teams across Customer Onboarding and Mastery, Financial Crime and Fraud Domains to drive outcomes - hence Domain knowledge of these areas is desirable. Work closely with the business teams, product owners to validate requirements before and after delivery through showcases and Day 2 production monitoring Own not just the build, but the runtime of applications in production through active operational support, clearly defined support model with engineers proficient in site reliability engineering Own and lead the efforts of cyber security updates such as keeping software currency versions up to date, patch infrastructure every sprint Oversee investment delivery across CET to maintain alignment between Domains, ensure investment is spent effectively, and provide insights on effectiveness and prioritisation of spend

Negotiation

View details

Head of Engineer - Home Ownership

Ho Chi Minh - Viet Nam

Product

Provide technical leadership for the Sub-Domain and are accountable for on-time delivery of Software Development Life Cycle Epics and Features. Lead, coach and mentor technology resources to uplift skills/knowledge to perform their role and to build a high-performing team. Drive technical delivery with a focus on improving speed, cost and quality of outcomes, ensuring the squads are aligned on objective and outcomes. Support and drive lean portfolio management across the Domain through linking business roadmaps with software delivery. Manage cross-functional, agile teams across business units to achieve performance targets. Accountable for removing Technical or delivery impediments that can't be resolved at squad level. Cost Management-Oversee financials to ensure achievement of plan and drive CI/CD. Responsible for developing market-leading capacity; the strategic deployment of the departmental resources leads to optimal resource allocation and successful product development.

Negotiation

View details