This job offer is not available in your country.
DevSecOps Analyst Kuala Lumpur •
K3 Capital GroupKuala Lumpur, Kuala Lumpur, Malaysia30+ days ago
Job description3+ years in DevOps / DevSecOps with GitHub Actions or Azure DevOps Hands-on with CodeQL / OWASP ZAP / Snyk / Trivy / Checkov Docker / Kubernetes fundamentals and scripting skills Track record reducing vulnerability backlog and failed deployments Experience with supply chain security (Sigstore / cosign) 90%+ repos covered by automated security gates Critical MTTR
Overview
Role Purpose : Embed security, compliance, and automation into build and release processes so teams can ship fast and safely across all K3 brands and divisions.
Responsibilities
- Implement CI / CD templates with SAST / DAST / SCA and container scanning
- Enforce secrets management (OIDC to Key Vault, no long-lived credentials)
- Define and monitor policy gates for secure code
- Build SBOM generation, image signing, and provenance
- Automate compliance evidence and deployment checklists
Preferable Experience
Success Measures
Salary and Location
Salary Range : RM 126,000 - 172,000 per year + competitive benefits package included
Location : Kuala Lumpur, Malaysia (Hybrid working model)
#J-18808-Ljbffr
Create a job alert for this search
Analyst Kuala Lumpur • Kuala Lumpur, Kuala Lumpur, Malaysia