DevOps Engineer

Assurity Trusted Solutions (ATS) is a wholly owned subsidiary of the Government Technology Agency (GovTech). As a Trusted Partner over the last decade, ATS offers a comprehensive suite of products and services ranging from infrastructure and operational services, authentication services, governance and assurance services as well as managed processes. In a dynamic digital and cyber landscape, where trust & collaboration are key, ATS continues to drive mutually beneficial business outcomes through collaboration with GovTech, government agencies and commercial partners to mitigate cyber risks and bolster security postures.Key Responsibilities:Automation Champion: Design, implement, and maintain automation scripts and tools to streamline security processes and improve efficiencySecurity Integration: Integrate security tools and practices seamlessly into the CI/CD pipeline, including static and dynamic application security testing (SAST/DAST), vulnerability scanning, and security configuration managementInfrastructure as Code (IaC) Security: Implement security best practices within our IaC frameworks (e.g., Terraform, CloudFormation) to ensure secure infrastructure deployment and managementCloud Security: Architect and implement security controls and best practices within cloud environments (e.g., AWS, GCP), ensuring compliance and protecting sensitive dataThreat Modelling and Risk Assessment: Participate in threat modelling exercises and conduct security risk assessments to identify and mitigate potential vulnerabilitiesIncident Response: Participate in security incident response activities, providing technical expertise and contributing to post-incident analysisSecurity Monitoring and Logging: Implement and maintain security monitoring and logging solutions to detect and respond to security eventsCollaboration and Communication: Work closely with development, operations, and security teams to foster a security-conscious culture and provide guidance on secure development practicesCompliance and Governance: Assist in ensuring compliance with relevant security standards and regulationsContinuous Improvement: Stay current with the latest security trends, technologies, and best practices, and proactively recommend and implement improvements to streamline the automation and improve the security postureRequirementsStrong understanding of infrastructure design and security, software development lifecycles (SDLC) and agile methodologiesProven experience developing and integrating security tools into automation pipelines (e.g., GitLab, Jenkins, Ansible DevOps)Experience integrating security testing tools (e.g. SAST, DAST, SCA, vulnerability scanners)Good understanding of cloud security principles and experience securing cloud environments (AWS or GCP)Experience with Infrastructure as Code (IaC) tools (e.g., Terraform, CloudFormation) and implementing security within IaCFamiliarity with containerization technologies (e.g., Docker, Kubernetes) and their security implicationsStrong scripting and automation skills (e.g., Python, Go, Bash, PowerShell)Excellent problem-solving, analytical, and communication skillsAbility to work independently and collaborativelyExperience with threat modelling methodologiesKnowledge of security frameworks and standards (e.g., NIST CSF, OWASP)Experience with security incident response processesExposure to security compliance frameworksStrong understanding of government central services with the ability to recommend relevant services for cloud-based systemsComprehensive knowledge of standard services available within cloud hosting infrastructure, specifically GCC and GCC+ environmentsThorough understanding of the Application Infrastructure Architecture Standard (AIAS) and its application in system design and deployment processesIn-depth knowledge of interconnectivity between all government hosting environments, including both cloud-based and on-premises servicesJoin us and discover a meaningful and exciting career with Assurity Trusted Solutions!The remuneration package will commensurate with your qualifications and experience. Interested applicants, please click "Apply Now".We thank you for your interest and please note that only shortlisted candidates will be notified.By submitting your application, you agree that your personal data may be collected, used and disclosed by Assurity Trusted Solutions Pte. Ltd. (ATS), GovTech and their service providers and agents in accordance with ATS's privacy statement which can be found at: https://www.assurity.sg/privacy.html or such other successor site.BenefitsWe promote a learning culture and encourage you to grow and learnAnnual Leave Benefits with additional perks such as Family Care and Birthday LeaveWorking in a collaborative environment with helpful team members