DevSecOpsCÔNG TY CỔ PHẦN CÔNG NGHỆ FINVIET
Hình thức: Toàn thời gian
Ngày đăng: 05/09/2024
Hạn nộp: 05/10/2024
Mô tả công việc
Provide security techniques and expertise to ensure the infrastructure and software services meet specific customer security requirements/certifications
Collaborate with members of the team and product owners to solve operational issues and develop enhancements such as automation.
Ensure applications stay compliant by integrating application and DevSecOps processes and CI/CD pipelines from early stages of the lifecycle.
Collaborate with team members on continuous improvement to both the Security DevOps pipelines and processes, and to the Information Security tools, services, and processes.
Understand technical and business requirements to develop tactical and strategic roadmaps to address and implement Secure SDLC controls (Data Privacy, SAST, DAST, etc).
Collaborate with members of the team and product owners to solve operational issues and develop enhancements such as automation.
Ensure applications stay compliant by integrating application and DevSecOps processes and CI/CD pipelines from early stages of the lifecycle.
Collaborate with team members on continuous improvement to both the Security DevOps pipelines and processes, and to the Information Security tools, services, and processes.
Understand technical and business requirements to develop tactical and strategic roadmaps to address and implement Secure SDLC controls (Data Privacy, SAST, DAST, etc).
Yêu cầu công việc
Bachelor Degree in information security, computer science.
Experience working in an Agile, DevOps/SecDevOps environment.
3+ years of experience working in software engineering role.
2+ years of experience working in a Security role handling on premise and cloud infrastructures.
Experience with security testing at scale by building and implementing static and dynamic analysis tools, integrating security into CI/CD workflows for everyday deployments.
Minimum 3 years' experience with Authentication and Authorization solutions.
Experience with static code analysis for software or infrastructure as code, including SonarQube,Terraform.
Experience with vulnerability scanners, including Tenable Nessus, Qualys, ...
Understanding of secure software development practices - AppSec - Security and/or regulatory experience desired, OWASP 10 and Web Application Security, Mobile Application Security, API Security.
Good knowledge of threat modeling, risk assessment techniques, code reviews, and with the latest security best practices
Require good knowledge of CI/CD tools - Knowledge of GitLab CI/CD, Seleneoid, Jmeter, SoapUI, Junit
Require good knowledge in automatic configuration management tool - Knowledge of Ansible, Terraform
Require good knowledge of automated security tools - SAST, SCA, DAST, IAST
Good knowledge of containers and orchestration platforms. Need to know how to create, build, deploy and manage containers in development and production environments - Docker, Kubernetes.
Patterns/ Principles - Blue/Green Deployment - Canary Release, Feature Flipping
IDE: Eclipse, Visual Studio
Public Cloud services knowledge: AWS, Digital Ocean.
Knowledge of Logging & Monitoring tools: ELK, Grafana, DataDog, Prometheus.
Experience in developing integration APIs and WebServices (REST/SOAP), API Development
Experience, Knowledge of API Security
Experience working in an Agile, DevOps/SecDevOps environment.
3+ years of experience working in software engineering role.
2+ years of experience working in a Security role handling on premise and cloud infrastructures.
Experience with security testing at scale by building and implementing static and dynamic analysis tools, integrating security into CI/CD workflows for everyday deployments.
Minimum 3 years' experience with Authentication and Authorization solutions.
Experience with static code analysis for software or infrastructure as code, including SonarQube,Terraform.
Experience with vulnerability scanners, including Tenable Nessus, Qualys, ...
Understanding of secure software development practices - AppSec - Security and/or regulatory experience desired, OWASP 10 and Web Application Security, Mobile Application Security, API Security.
Good knowledge of threat modeling, risk assessment techniques, code reviews, and with the latest security best practices
Require good knowledge of CI/CD tools - Knowledge of GitLab CI/CD, Seleneoid, Jmeter, SoapUI, Junit
Require good knowledge in automatic configuration management tool - Knowledge of Ansible, Terraform
Require good knowledge of automated security tools - SAST, SCA, DAST, IAST
Good knowledge of containers and orchestration platforms. Need to know how to create, build, deploy and manage containers in development and production environments - Docker, Kubernetes.
Patterns/ Principles - Blue/Green Deployment - Canary Release, Feature Flipping
IDE: Eclipse, Visual Studio
Public Cloud services knowledge: AWS, Digital Ocean.
Knowledge of Logging & Monitoring tools: ELK, Grafana, DataDog, Prometheus.
Experience in developing integration APIs and WebServices (REST/SOAP), API Development
Experience, Knowledge of API Security
Quyền lợi được hưởng
• 13th month salary, bonus project, gifts (New Year, birthday, 8/3, 1/6, 20/10..)
• Lunch allowance and parking free
• Team building, company trip
• Insurance after 2 months of probation, PVI insurance for some levels
• Training in work and fast-track your career path
• Working in a friendly and professional environment
• Lunch allowance and parking free
• Team building, company trip
• Insurance after 2 months of probation, PVI insurance for some levels
• Training in work and fast-track your career path
• Working in a friendly and professional environment
Thông tin khác
Cấp bậc
Nhân viên
Kinh nghiệm
5 năm
Số lượng tuyển
1 người
Hình thức làm việc
Toàn thời gian
Giới tính
Không yêu cầu
Nhân viên
Kinh nghiệm
5 năm
Số lượng tuyển
1 người
Hình thức làm việc
Toàn thời gian
Giới tính
Không yêu cầu
Giới thiệu công ty
CÔNG TY CỔ PHẦN CÔNG NGHỆ FINVIET việc làm
34 Hoang Viet, Tan Binh, Ho Chi Minh
Quy mô: Từ 101 - 500 nhân viên
Việc làm tương tự
Lập Trình Website (Parttime)
Công Ty TNHH Công Nghệ Và Giải Trí Bitdance
Thỏa thuận
Hồ Chí Minh
12/10/2024
LẬP TRÌNH WEB PHP
CÔNG TY TNHH ESUHAI
Thỏa thuận
Hồ Chí Minh, Bà Rịa - Vũng Tàu, Bến Tre, Bình Dương, Đồng Nai, Sóc Trăng, Thừa Thiên Huế, Tiền Giang, Trà Vinh, Vĩnh Long
01/10/2024
Web Developer (Website Administrator)
Công ty TNHH QC - TV - TCBD Cát Tiên Sa
Thỏa thuận
Hồ Chí Minh
13/10/2024
- DevSecOps - Cloud Operations Engineer
Công Ty TNHH Money Forward Việt Nam
Thỏa thuận
Hồ Chí Minh
23/09/2024
Lập Trình Web - Front-End Developers Reactjs
Công Ty Cổ Phần Công Nghệ MIDEAS (Công Nghệ MIDEAS)
7 - 15 triệu VNĐ
Hồ Chí Minh
24/09/2024
Vị trí DevSecOps do công ty CÔNG TY CỔ PHẦN CÔNG NGHỆ FINVIET tuyển dụng tại Hồ Chí Minh, Joboko tự động tổng hợp mức lương Tới 80 triệu, tìm thêm việc làm về DevSecOps hoặc công ty CÔNG TY CỔ PHẦN CÔNG NGHỆ FINVIET ở các link phía trên
Giới thiệu công ty
CÔNG TY CỔ PHẦN CÔNG NGHỆ FINVIET việc làm
34 Hoang Viet, Tan Binh, Ho Chi Minh
Quy mô: Từ 101 - 500 nhân viên