Tawaran kerja ini tidak tersedia di negara anda.
DevSecOps Analyst
K3 Capital GroupKuala Lumpur, Kuala Lumpur, Malaysia14 jam yang lalu
Penerangan pekerjaan3+ years in DevOps / DevSecOps with GitHub Actions or Azure DevOps Hands-on with CodeQL / OWASP ZAP / Snyk / Trivy / Checkov Docker / Kubernetes fundamentals and scripting skills Track record of reducing vulnerability backlog and failed deployments Experience with supply chain security (Sigstore / cosign) You will be a Malay National to be considered 90%+ repos covered by automated security gates Critical MTTR Competitive benefits package included
Role Purpose :
Embed security, compliance, and automation into build and release processes so teams can ship fast and safely across all K3 brands and divisions.
Key Responsibilities :
- Implement CI / CD templates with SAST / DAST / SCA and container scanning
- Enforce secrets management (OIDC to Key Vault, no long-lived credentials)
- Define and monitor policy gates for secure code
- Build SBOM generation, image signing, and provenance
- Automate compliance evidence and deployment checklists
Profile :
Success Measures :
What we offer :
Buat amaran kerja untuk carian ini
Analyst • Kuala Lumpur, Kuala Lumpur, Malaysia