x
Get our mobile app
Fast & easy access to Jobstore
Use App
Congratulations!
You just received a job recommendation!
check it out now
Browse Jobs
Companies
Campus Hiring
Download App
Jobs in Singapore   »   Jobs in Singapore   »   Information Technology Job   »   Technical Architect – DevSecOps
 banner picture 1  banner picture 2  banner picture 3

Technical Architect – DevSecOps

Hcl Singapore Pte. Ltd.

Hcl Singapore Pte. Ltd. company logo

Responsibilities

  • To develop, manage and maintain the security, administration, configuration, troubleshooting, automation of security analysis of solutions.
  • To develop, maintain, and execute infrastructure as code scripts and playbooks to automate deployment and maintenance tasks to ensure the availability, reliability, and efficient operation of the enterprise systems.
  • Responsible for the evolution of application security functions and services. The position demands someone who is highly technically competent, detail oriented, and driven to stay current with evolving technologies.
  • Supporting compliance efforts related to secure SDLC processes and infrastructure.
  • Ability to perform technical due diligence on platforms and solutions when limited or no documentation is available.
  • Ability to grasp wide range of technologies from IOT, Edge, Datacenter, and cloud to offer solutions.
  • Ability to effectively communicate with both technical and non-technical peers and business stakeholders, as well as executive level management.
  • Ability to lead the remediation of application vulnerability screening and results of penetration testing.
  • To provide deep subject matter expertise across multiple disciplines including IT infrastructure, security, business application and system integration.

Security and Privacy (Skills)

  • Knowledge of secure coding best practices and security framework standards: NIST, COBIT, ISO.
  • Experience architecting solutions that comply with compliance regulations such as: PCI, GLBA, SOX, Basel III.
  • Experience implementing controls for privacy legislation such as: HIPAA, COPPA, FCRA, GLB and GDPR.

Skills Requirements

  • Bachelor’s degree in Information Technology/Computer Science/Engineering.
  • 8 - 11 years of relevant work experience.
  • Proven experience of working in AppSec within DevOps or DevSecOps groups.
  • Experience in developing processes that produce artifacts that support security and compliance requirements.
  • Ability to design and implement secure automation solutions for development, testing, and production environments.
  • Experience in supporting multiple agile teams across various platforms, environments, and instances.
  • Experience of implementing security best practices and configuration management.
  • Ability to employ infrastructure-as-code to increase automation, scalability, and reliability.
  • Experience in cloud based containerized environments (Kubernetes, Docker).
  • Deep technical experience of securing, monitoring, and maintaining infrastructure for in-house developed applications.
  • Expertise in 3rd party library security scanning, static code scanning, code hygiene, dynamic code scanning.
  • Experience in leading the organization’s application security tooling, problem intake and remediation process.
  • Knowledge of container security, AWS EKS, Azure AKS, Helm.
  • Knowledge of IAM, cloud trail, guard duty, WAF, SDLC practices, basic scripting skills.
  • Experience with common programming and scripting languages, such as Golang, Ruby, C/C++, C#, Python, JavaScript, Bash.
  • Familiar with designing solutions to complex technical issues and working with other technology or cyber security experts, including architects and vendors.
  • Resolves any technical problems discovered by DevOps, development, or testers and any internal clients.
  • Familiar with cloud offerings including, but not limited to, Alibaba, Amazon Web Services, Azure, and Google Cloud Platform.
  • Knowledge of Agile software development principles, Continuous Integration and Deployment (CICD), and DevOps.
  • Knowledge of software vulnerabilities and remediation (OWASP/SANS CWE).
  • Experience implementing identity strategies and application integrations including LDAP, Kerberos, SAML, OAuth, OpenID Connect.
  • Experience in developing secure configurations across Integration APIs, GraphQL and deployment on API Gateways such as Azure APIM GW, Axway/Mulesoft API GW etc.
✱   This job post has expired   ✱

Sharing is Caring

Know others who would be interested in this job?