Senior DevSecOps Engineer
Văn phòng đại diện công ty TNHH tập đoàn GFT
Địa điểm làm việc: Hà Nội, Hồ Chí Minh
Hết hạn: 26/05/2023
- Chi tiết công việc
- Giới thiệu công ty
Vị trí công việc này hiện tại đã hết hạn nộp hồ sơ, bạn có thể tham khảo thêm một số công việc liên quan phía dưới
Mô tả công việc
Mô tả công việc
Tóm tắt công việc
GFT Vietnam is looking for Senior DevSecOps Engineer this role comes with the opportunity to expand across other Digital Banking clients within our growing Vietnam delivery portfolio in the future and we are seeking highly motivated members to join our team
Responsibilities:
Manage and execute security assessments for agile projects & ensure project timelines are met.
Identify opportunities to automate and standardize information security controls and for the supported groups
Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
Scan and analyze applications with automated tools, and perform manual testing if necessary
Collaborate with application teams to ensure that any identified security vulnerabilities are remediated in a timely manner.
Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behaviour, conduct and business practices, and escalating, managing and reporting control issues with transparency.
Utilize Static & Dynamic Application Security Testing (SAST/DAST), Interactive Application Security Testing (IAST), and Component Vulnerability Management (CVM) tools such as Fortify, Snyk, BurpSuite, ZAP etc to uncover additional vulnerabilities
Tóm tắt công việc
GFT Vietnam is looking for Senior DevSecOps Engineer this role comes with the opportunity to expand across other Digital Banking clients within our growing Vietnam delivery portfolio in the future and we are seeking highly motivated members to join our team
Responsibilities:
Manage and execute security assessments for agile projects & ensure project timelines are met.
Identify opportunities to automate and standardize information security controls and for the supported groups
Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
Scan and analyze applications with automated tools, and perform manual testing if necessary
Collaborate with application teams to ensure that any identified security vulnerabilities are remediated in a timely manner.
Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behaviour, conduct and business practices, and escalating, managing and reporting control issues with transparency.
Utilize Static & Dynamic Application Security Testing (SAST/DAST), Interactive Application Security Testing (IAST), and Component Vulnerability Management (CVM) tools such as Fortify, Snyk, BurpSuite, ZAP etc to uncover additional vulnerabilities
Yêu cầu
Yêu cầu công việc
Qualifications:
At least 5-7 years of relevant experience in DevSecOps (worked with tools in the area of Static Analysis, Dynamic Analysis, Container Analysis, Third Party Library analysis/Software Composition Analysis...)
Has experience in Pentesting in the area of infra/web/mobile/API
Consistently demonstrates clear and concise written and verbal communication.
Must have a strong understanding of Linux, Kubernetes, working knowledge of CI/CD process, Jira & Programming language Python for automation
Has exposure in Vulnerability Management
Education:
Bachelor's degree/University degree or equivalent experience
Master's degree preferred
Qualifications:
At least 5-7 years of relevant experience in DevSecOps (worked with tools in the area of Static Analysis, Dynamic Analysis, Container Analysis, Third Party Library analysis/Software Composition Analysis...)
Has experience in Pentesting in the area of infra/web/mobile/API
Consistently demonstrates clear and concise written and verbal communication.
Must have a strong understanding of Linux, Kubernetes, working knowledge of CI/CD process, Jira & Programming language Python for automation
Has exposure in Vulnerability Management
Education:
Bachelor's degree/University degree or equivalent experience
Master's degree preferred
Thông tin khác
Yêu cầu kỹ thuật:
DevSecOps
,
Penetration testing
,
Linux
,
Jira
,
Python
,
Kubernetes
,
CI/CD
DevSecOps
,
Penetration testing
,
Linux
,
Jira
,
Python
,
Kubernetes
,
CI/CD
Thông tin chung
- Ngày hết hạn: 26/05/2023
- Thu nhập: 4000
Giới thiệu công ty
Xem trang công ty
Công ty chưa cập nhật thông tin....
Quy mô công ty
Từ 26 - 100 nhân viên
Việc làm tương tự
Công ty Cổ phần Viễn thông FPT - FPT Telecom
Thương lượng
02/11/2024
Hồ Chí Minh
Công ty Cổ phần Viễn thông FPT - FPT Telecom
15 - 30 triệu
13/10/2024
Hà Nội
hỗ trợ doanh nghiệp
Giải thưởng
của chúng tôi
Top 3
Nền tảng số tiêu biểu của Bộ
TT&TT 2022.
Top 15
Startup Việt xuất sắc 2019 do VNExpress tổ chức.
Top 10
Doanh nghiệp khởi nghiệp sáng tạo Việt Nam - Hội đồng tư vấn kinh doanh ASEAN bình chọn.
Giải Đồng
Sản phẩm công nghệ số Make In Viet Nam 2023.