Senior DevSecOps Engineer

JOB DESCRIPTION

Manage and execute security assessments for agile projects & ensure project timelines are met.
Identify opportunities to automate and standardize information security controls and for the supported groups
Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
Scan and analyze applications with automated tools, and perform manual testing if necessary
Collaborate with application teams to ensure that any identified security vulnerabilities are remediated in a timely manner.
Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behaviour, conduct and business
practices, and escalating, managing and reporting control issues with transparency.
Utilize Static & Dynamic Application Security Testing (SAST/DAST), Interactive Application Security Testing (IAST), and Component Vulnerability Management (CVM) tools such as Fortify, Snyk, BurpSuite, ZAP etc to uncover additional vulnerabilities 

JOB REQUIREMENT

Qualifications:
At least 5-7 years of relevant experience in DevSecOps (worked with tools in the area of Static Analysis, Dynamic Analysis, Container Analysis, Third Party Library analysis/Software Composition Analysis…)
Has experience in Pentesting in the area of infra/web/mobile/API
Consistently demonstrates clear and concise written and verbal communication.
Must have a strong understanding of Linux, Kubernetes, working knowledge of CI/CD process, Jira & Programming language Python for automation
Has exposure in Vulnerability Management
Education:
Bachelor’s degree/University degree or equivalent experience
Master’s degree preferred

WHAT'S ON OFFER

Why join with us
We build a professional & fun working environment.
We focus on your growth, yes the long-term growth.
We develop the future-ready digital bank platform.
Benefits
Competitive salary and bonus.
Opportunities for your professional growth in fintech, especially in digital banking 
Social insurance (max), premium medical insurance
Parking allowance, snacks, and coffee.
Monthly team-building and social activities.

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666
We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Outsource

Technical Skills:

Security, Devops

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Job ID:

J01215

Status:

Close

Related Job:

Staff Software Engineer (Node.js)

Ho Chi Minh - Viet Nam

Product

  • NodeJS
  • AWS

Lead & design system architectures, establish coding standards, and construct cohesive, cloud-native solutions. Lead & develop high-quality Node.js code, optimize system performance, and tackle complex software integration challenges. Oversee the testing, deployment, and comprehensive documentation of integrated systems. Mentor less-experienced engineers, engage in cross-functional teamwork, and ensure solutions meet business requirements and international standards. Participate actively in all Agile software development phases, including creating user stories and executing sprint planning Engage with multinational companies, demonstrating flexibility to occasionally adapt to US and EU time zones.

Negotiation

View details

Senior Security Engineer

Ho Chi Minh - Viet Nam

Product

  • Security
  • Devops

Implement and improve security controls across major commercial cloud environments Strengthen security across applications, infrastructure, and CI/CD pipelines Perform threat modeling and vulnerability identification Own security operations: reporting, dashboards, and process optimization Automate workflows to improve efficiency and reliability Analyze security data and translate insights into actionable improvements Document risks, propose solutions, and present/track for approval Support incident response and vulnerability management Collaborate asynchronously with global teams

Negotiation

View details

Senior SAP SD Consultant (SAP O2C S4 HANA)

Ho Chi Minh, Ha Noi - Viet Nam

Outsource

  • SAP

#Main responsibilities Lead end-to-end SAP O2C S4 HANA module implementations & Roll Out Projects. Responsible to gain competency in process template Gather and document business requirements from users. Analyse business processes and propose improvements. #Rollouts: Identify the gaps compared to the template by assessing the system & connecting with the Business Users. Conduct workshops and training sessions for Business-users on SAP O2C functionalities and Bosch practices Integrate SAP O2C with other modules such as MM, FI, and WM/EWM to ensure data consistency and process efficiency. Coordinate with Design and build and BD teams to implement the requirement. Identify the scope for the rollout for the respective plant . Responsible to explain the plant how to adopt the template process and deploy the custom requirements. Collaborate with plant and design build team to finalize the migration requirement ( Define field mapping and transformation rule etc ) for each plant . Verify sample & mass upload of migrated data such as Sales Order, Pricing Condition, Invoices along with the Master Data like Business partner & Material Master Understand template test cases and localize where necessary for each plant . Support Business Users in executing test cases during test cycles like Integration testing & UAT Create/Support in creating test defects and follow until defect resolution Understand the existing cutover list and task execute as per cutover schedule and provide inputs if any. Support during hyper care Train Key-users, setup training data, prepare demo and create/publish supporting documents for project reusable repository. Develop user manuals, training materials, and process documentation as per Bosch quality standards.#Process improvement activities (PIA): Understand business request & Support the PIA Lead to implement improvement activities ( Validate/finalize the scope /coordinate with technical team to complete unit testing and implementation Collaborate with stakeholders to understand business processes and requirements and translate them into functional specifications in support with Lead Consultant. Mentor Junior & Senior Functional consultants to develop competency required for project deliverables Responsible for the assigned Business Requirement (BR)

Negotiation

View details