DevSecOps Engineer

Esco Lifesciences Group provides enabling technologies, products and services to the life sciences and healthcare industries, supporting academic research and scientific discoveries, clinical practice, as well as biopharmaceutical R&D and manufacturing. Headquartered in Singapore, Esco has an extensive sales network in over 100 countries, direct sales and service offices in 24 countries, 8 manufacturing and R&D hubs in the US, Europe, the UK, China, Singapore, Indonesia, and over 1500 employees worldwide.

We are seeking a skilled and innovative DevSecOps Engineer to join our IT and security team. As a DevSecOps Engineer, you will play a crucial role in designing, implementing, and maintaining security practices within our DevOps processes. Your expertise will ensure the security, scalability, and reliability of our software development and deployment pipelines.

Responsibilities:

• Integrate security practices throughout the software development lifecycle for data and system protection
• Manage and automate CI/CD workflows to enhance development efficiency
• Ensure the stability of Azure infrastructure.
• Configure and optimize cloud services for performance and security
• Conduct monthly reports for subscription and billing, improve the efficiency of those services
• Conduct security audits and implement necessary measures related to Infrastructure and secure code by SonarQube, SnykCLI, and SIEM
• Utilize programming languages for automation and efficiency
• Able to create a backup storage with best practices
• Identify and proactively mitigate security risks
• Collaborate with the frontend and backend teams to enforce DevSecOps best practices during development and deployment
• Write comprehensive documentation to explain code, processes, and procedures
• Monitor all services and infrastructure
• Be willing to mentor and learn from other team members, fostering a collaborative learning environment

The Ideal Candidate Would Possess:

• An Associate's (D3), Bachelor's (S1) degree, or higher, in computer science, information security, or a related field
• Minimum of 3 years of experience in a similar role or equivalent
• In-depth knowledge of DevSecOps practices and related tools
• Experience in configuring and managing Azure infrastructure
• Proficiency in CI/CD tools such as GitHub Actions, Jenkins, or equivalent
• Knowledge of container security best practices
• Having security certifications and qualifications is preferred
• Familiarity with additional tools and technologies such as Docker, Kubernetes, Networking (VPN), SonarQube, Wazuh, and Graylog SIEM, and WAF
• Fluent in both spoken and written English. Excellent verbal and communication skills and the ability to translate complex technical issues into simple, user-friendly language for stakeholders
• Familiarity with serverless technology
• Comfortable working in a fast-paced, customer-focused, and adaptable organization. Flexible and able to adapt to new situations as per business demands
• Willing to be placed in either Bintan or Serpong, Tangerang Selatan