Senior DevOps Security Engineer (DevSecOps)

TL;DR

Senior DevOps Security Engineer (DevSecOps): Implementing and maintaining automated security measures within a DevOps environment with an accent on vulnerability management and security integration in the SDLC. Focus on configuring security controls, performing risk assessments, and improving overall system resilience.

Location: Hybrid (Kuala Lumpur, Malaysia). Applicants must be eligible or have legal authorization to work in Malaysia.

Company

hirify.global is a dynamic IT services provider focusing on high-performance financial technology solutions.

What you will do

• Implement and automate security measures within the DevOps environment.
• Integrate security practices into the software development lifecycle (SDLC) in collaboration with development teams.
• Configure and manage security controls, including firewalls, access controls, and encryption technologies.
• Conduct regular vulnerability scans and security assessments to identify and remediate issues.
• Monitor security systems and coordinate incident response efforts to mitigate threats.
• Promote security best practices and provide guidance across engineering teams.

Requirements

• Up to 3 years of experience in DevOps security or IT security roles.
• Strong knowledge of firewalls, access controls, SSL/TLS, SSH, and IPSec.
• Familiarity with OWASP Top 10, PCI DSS, NIST Cybersecurity Framework, and ISO 27001.
• Experience with vulnerability scanners and penetration testing tools.
• Practical understanding of agile development and continuous delivery pipelines.
• Legal authorization to work in Malaysia is required.

Culture & Benefits

• Hybrid work model with 2 days of working from home.
• Comprehensive health and life insurance provided from day one.
• Annual leave starting at 22 days, increasing up to 30 days based on seniority.
• Summer Friday afternoons off and special birthday leave.
• Paid time off for professional training and education.
• Gym membership and referral bonuses.