DevSecOps Engineer
Ho Chi Minh
Remote/Hybrid – Full-time
About our company
Jumpstart Disruptive Innovations, former name Tech JDI, is established by experienced operators in the IT
sector, to help foreign companies establish presence in Vietnam to access its fast-growing market and large
talent pool for IT development.
Talent JDI, a subsidiary of Jumpstart Disruptive Innovations, is a leading recruitment firm that helps link top
IT talents in Vietnam to Singapore-based startups and growing businesses. With a dedicated & experienced
recruitment team, who specialized in both the Singapore and Vietnam market, we enable IT talents to find the
right profession in no time.
Our clients are rapidly scaling IT companies in variety industries: Covering e-commerce, IT security Consumer
applications, Business software, Online-to-offline businesses.
About our Client
• Our client is a Software company based in Singapore.
Responsibilities
➢ Our client is looking for a talented DevSecOps Engineer who will be responsible for developing a robust
DevOps infrastructure and integrating security practices into our DevOps pipeline and infrastructure.
• DevSecOps Pipeline: Design, implement, and maintain a secure CI/CD pipeline with integrated security
checks (e.g., static analysis, dynamic analysis, vulnerability scanning).
• Security Automation: Automate security processes, including configuration management, security
monitoring, and incident response.
• Cloud Security: Manage and secure cloud infrastructure (AWS, GCP) with best practices in network
security, encryption, identity, and access management.
• Compliance and Audits: Ensure the infrastructure adheres to industry-standard security compliance
frameworks (e.g., SOC2, ISO 27001, PCI-DSS) and help prepare for audits.
• Incident Response and Mitigation: Develop and maintain an incident response plan and handle security
incidents effectively.
• Infrastructure as Code: Securely manage cloud infrastructure using Infrastructure as Code (e.g.,
Terraform, CloudFormation) and ensure continuous compliance.
• Disaster Recovery & Backup: Design and implement secure backup, disaster recovery, and failover
strategies to minimise downtime and data loss.
• Collaboration: Work with cross-functional teams (developers, security, operations) to integrate
security at all stages of the software development lifecycle (SDLC).
• Cost Optimization: Ensure security implementations are cost-efficient while maintaining scalability and
performance.
1
�Job requirements
• Preferred 3 or more years of experience in DevOps or cloud infrastructure with at least 2 years
focused on security (DevSecOps)
• Strong experience with CI/CD tools (e.g., Jenkins, GitLab CI, CircleCI) and infrastructure management
tools (Docker, Kubernetes, Ansible, Terraform)
• In-depth knowledge of cloud security best practices in AWS, GCP, or other cloud providers, including
network security, encryption, and IAM
• Prefer to have knowledge of Kubernetes security best practices and how to implement secure
containerized environments
• Experience with security tools such as vulnerability scanners (e.g., Nessus, OpenVAS), intrusion
detection systems, and security information and event management (SIEM) systems
• Proven ability to automate security tasks such as configuration management, patch management,
and security testing using scripting languages (Bash, Python)
• Set up and manage monitoring, logging, and alerting systems (e.g., Prometheus, Grafana, ELK Stack)
for security monitoring
• Experience with Terraform, CloudFormation, or similar tools to automate infrastructure deployment
securely
• Familiarity with Zero Trust Security models and implementation
• Excellent problem-solving skills
• Excellent communication and interpersonal skills)
Language:
• English: Good
Benefits
• Standard Benefit
For further support, do not hesitate to contact our consultant, or contact us via email
[email protected] or hotline 028 3526 0292
