[Lta-Itcd] Prp / Senior / Executive Cloud Security & Devsecops Engineer

[What the role is]

PRP / SENIOR / EXECUTIVE CLOUD SECURITY & DEVSECOPS ENGINEER

[What you will be working on]

To align with the Digital Government Blueprint’s vision of “Digital to the Core, and Serves with Heart”, LTA is embarking on a digital transformation journey by harnessing new technologies to drive broader efforts to revamp the digital platform, develop and integrate enterprise-wide IT systems. We envision to leverage cloud services such as government commercial cloud infrastructure for enhanced business agility and build stakeholder-centric services that cater to businesses’ needs.

LTA is looking for Cloud Security and DevSecOps Engineer to be responsible for building, designing, deploying, maintaining and lead the implementation of Cloud and DevSecOps solutions for AWS and Azure Cloud infrastructure.

You will be involved in:

• Implementing and refining cloud solutions, architectures and roadmaps including architecture standards, guidelines, and industry best practices for AWS cloud infrastructure
• Designing, implementing and supporting continuous integration and continuous deployment solutions based on industry best practices for a multi cloud application on GovTech SHIP-HATS Gitlab
• Implementing and defining best practices and strategies regarding application deployment and infrastructure maintenance
• Troubleshooting and resolving technical operational issues for cloud infrastructure
• Setting up monitoring infrastructure including proactive capacity management and replication strategies
• Implementing development, staging & production environments for cloud-based micro-services architecture
• Performance tuning, hardware upgrades, and resource optimization as required. This includes configuration of CPU, memory, and disk partitions as required
• Ensuring security infrastructure processes, services, concepts, and maintenance are incorporated into systems, hardware, software and cloud platforms in accordance with approved security standards
• Performing maintenance of both cloud and security infrastructure
• Supporting information security governance, risk management and compliance programs which include security assessments and on-site reviews, security gap remediation, security incident support, audit support functions, business process and project consultancy and security education and awareness

[What we are looking for]

• Knowledge in Computer Science/Engineering or any relevant qualification with at least 5 years’ IT experience in project delivery of IT systems in AWS cloud infrastructure
• Professional cloud certifications in AWS services
• Understanding and experience in writing Infrastructure-as-Code, using tools such as CloudFormation or Terraform etc.
• Experience with AWS networking and routing technologies (AWS CloudFront, VPC, Security groups, NACL, Route53, Load Balancing and Availability zones)
• Experience with cloud scale logging and monitoring solutions such as CloudWatch, ELK Stack, and Prometheus
• Experience with securing and hardening Windows & Linux
• Experience with on premise and cloud-based security technologies: encryption, end point protection, hardware security modules, sandboxes, SIEM, web application firewall, intrusion detection systems, intrusion prevention systems, web proxies, wireless intrusion prevention systems, and file integrity monitoring
• Experience deploying CICD pipelines using tools such as Jenkins, AWS CodeDeploy, Gitlab
• Experience with Azure Cloud Platform, Azure AI Service and multi-cloud deployment is an advantage
• Knowledge and implementation experience of the Government Instruction Manual for IT Management (IM8) and WOG baseline standards is an advantage

As part of the shortlisting process for the role, you may be required to complete a medical declaration and / or undergo further assessment.