Senior DevSecOps Engineer

JOB DESCRIPTION

Manage and execute security assessments for agile projects & ensure project timelines are met.
Identify opportunities to automate and standardize information security controls and for the supported groups
Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
Scan and analyze applications with automated tools, and perform manual testing if necessary
Collaborate with application teams to ensure that any identified security vulnerabilities are remediated in a timely manner.
Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behaviour, conduct and business
practices, and escalating, managing and reporting control issues with transparency.
Utilize Static & Dynamic Application Security Testing (SAST/DAST), Interactive Application Security Testing (IAST), and Component Vulnerability Management (CVM) tools such as Fortify, Snyk, BurpSuite, ZAP etc to uncover additional vulnerabilities 

JOB REQUIREMENT

Qualifications:
At least 5-7 years of relevant experience in DevSecOps (worked with tools in the area of Static Analysis, Dynamic Analysis, Container Analysis, Third Party Library analysis/Software Composition Analysis…)
Has experience in Pentesting in the area of infra/web/mobile/API
Consistently demonstrates clear and concise written and verbal communication.
Must have a strong understanding of Linux, Kubernetes, working knowledge of CI/CD process, Jira & Programming language Python for automation
Has exposure in Vulnerability Management
Education:
Bachelor’s degree/University degree or equivalent experience
Master’s degree preferred

WHAT'S ON OFFER

Why join with us
We build a professional & fun working environment.
We focus on your growth, yes the long-term growth.
We develop the future-ready digital bank platform.
Benefits
Competitive salary and bonus.
Opportunities for your professional growth in fintech, especially in digital banking 
Social insurance (max), premium medical insurance
Parking allowance, snacks, and coffee.
Monthly team-building and social activities.

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666
We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Outsource

Technical Skills:

Security, Devops

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Salary:

Negotiate

Job ID:

J01215

Status:

Close

Related Job:

Senior Backend Engineer - NAVER Financial

Ho Chi Minh - Viet Nam

Product

Responsible for developing and maintaining the server-side components using the Kotlin programming language. Write and maintain technical documentation, including system architecture and API specifications.

Negotiation

View details

Android Engineer (Java/Kotlin)

Ho Chi Minh - Viet Nam

Product

  • Android

Develop Android App part of various Services Develop new services and improve structures Analyze and apply new technologies to services

Negotiation

View details

C++ Engineer - Market Data

Ho Chi Minh, Ha Noi - Viet Nam

Product

  • C/C++

Maintain/enhance our legacy C++-based tick data processing platform as needed, demonstrating product ownership, and helping migrate datasets to our new tick data processing platform. Contribute to our new, modern C++-based tick data processing platform - enhancing the platform to support additional tick data feeds across asset classes, developing/reviewing the implementation of tick data-based interval features/statistics, and adding new functionality to the platform all while maintaining high software standards and best practices. Collaborate with the Research and Portfolio Management organizations to facilitate the transition from our legacy platform to our new platform, supporting their price volume data needs for signal generation.

Negotiation

View details