Senior Cloud DevSecOps Engineer
Mandaluyong, Philippines
ERNI
Wir beraten Unternehmen in Innovation und Technologie mit dem Ziel, ihre Leistungsfähigkeit durch Software zu steigern und ihre geschäftskritischen Prozesse zu digitalisieren.ERNI is a fast-growing Software Development company headquartered and founded in Switzerland in 1994, with more than 800 employees. We are highly specialized in IT & software engineering to enable and deliver innovation in process and technology. Our first service center in Asia Pacific is in Metro Manila (Mandaluyong) from where we provide our service to Europe, APAC incl. our local market Philippines, and USA regions. We are now geared towards expansion and are looking for highly motivated joiners.
WHY ERNI is the best place to call HOME? 🏡
🤩 This is how we can support you; ALL company PERKS AND BENEFITS take effect UPON HIRING!
- Permanent Contract: there is always a project and opportunity for you.
- Private HMO and Insurance – effective on day 1 of employment.
- Jubilee in 5th year at ERNI (FREE TRAVEL TO ANY SITES IN EUROPE ✈)
- Government-Mandated Benefits: inclusive of the 13th-month pay.
- Personal Development and Travel Opportunities outside the Philippines
- Birthday Cake
- Wedding Gift – to celebrate your special day.
- Baby Basket – to welcome your newborn to the ERNI family.
- Fruit Basket – boost of vitamins during hospitalization.
- Free Snacks and Coffee in the office.
🔐 UNLOCKING NEW DOORS OF GROWTH & OPPORTUNITIES
- Free Training with Certifications: Grow with us through technical and non-technical training.
- Challenging Projects: ERNI is dedicated to developing high-quality software in complex technical environments such as MedTech, Industry, Finance, and Transportation. Have the chance to participate in various technically challenging projects amongst passionate and skilled colleagues.
- Employee Welfare: You will be guided by a group of people who will guide and support you to have the right tools and mindset.
- Promotions & Recognition: From the very first day, we offer you a way to learn and develop yourself in our company. Your colleagues and superiors consistently recognize and appreciate all efforts, making you feel satisfied with your achievements.
- Communication: You will find transparency, honesty, and open communication in our working culture. we value suggestions, opinions, and feedback from all employees.
⏱ FLEXIBILITY
- Hybrid Set-Up: We are combining both remote work and in-person work. The hybrid setup will allow you to reduce commuting time and have a more flexible work schedule. This will help you to manage better your work-life balance.
🎉 EVENTS:
- We provide many opportunities to connect and build relationships. We are learning, growing, and celebrating achievements together. You will experience a wide range of different exciting activities. What to expect? Leisure Events, Summer Events, Family Events, Social Events, and Year-End Events.
👋 What are our wishes?
- Bachelor’s or master’s degree in Computer Science, Information Systems or related quantitative field
- 7+ years of relevant working experience or working in similar role, preferably in the financial industry
- Deep understanding of "security by design" and "privacy by design" concepts, able to articulate secure architectural options to technical and non-technical stakeholders and provide recommendations
- Experience with continuous integration, continuous delivery, test development, release management and related CI/CD and DevOps tooling (Jenkins, GitLab, etc.)
- Demonstrable skills in two or more programming/scripting languages (Java, Python, JavaScript, etc.)
- Solid experience and proficiency in infrastructure-as-code and CI/CD pipeline tooling (Terraform, Gitlab)
- Strong planning, strategic thinking, and prioritization skills
- Proactive and excellent communicator with a team-oriented approach to solve business problems with entrepreneurial mindset to constantly improve the status quo
- Ability to keep up with the state-of-the art security and cloud computing trends in the market and quickly comprehend how to apply to Partners Group environments
Desired
- Cloud security related certification (preferably AWS Certified Security)
- Microsoft Certified Azure Security Engineer Associate or equivalent accreditation is a plus
- Practical experience of at least one common Enterprise Agile Framework e.g., Kanban, SCRUM, etc or with ITSM/ITIL
- Hashicorp Certified Terraform Associate or equivalent accreditation is a plus
💼How can you contribute to the team?
As Senior DevSecOps Security Engineer, you will play a pivotal role in defining, maintaining, and implementing the client's security strategy. You will apply your deep expertise in information security technologies, concepts, and methodologies to combat potential cyber threats and ensure regulatory compliance.
You will find yourself engineering, implementing and managing security measures and IT security services to protect the client's applications from vulnerabilities and cyber-attacks.
You Will Have The Following Responsibilities
DevSecOps
- Provide subject matter expertise for AWS infrastructure and application security design and implementation.
- Implement security controls and design requirements during the software development process and change management lifecycle.
- Demonstrate exceptional proficiency in identifying systems vulnerabilities and providing actionable remediation suggestions
- Define best in class authentication and authorization methods and access controls
- Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
- Conduct or facilitate threat modelling of services and applications that tie to the risk and data associated with the service or application.
- Design technical solutions to address security weaknesses, and work with relevant stakeholders to implement them.
- Provide on-call IT security support, overnight and on weekends over a period of 7 consecutive days, on a recurring rotation of once every 4 to 5 weeks
Innovate
- Research advanced approaches regarding application security best practices in the field to determine trends that may impact the operations and address services optimization and continuous improvement opportunities
- Stay on the leading edge of IT security, vulnerability practices and remain current on new technologies and available vendor packages
Standardise & collaborate
- Provide guidance and expertise to ensure that IT security measures are effectively integrated into all aspects of the organization's IT landscape
- Participate in application and infrastructure projects to provide security-planning advice
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Application security AWS Azure CI/CD Cloud Compliance Computer Science DevOps DevSecOps Finance GitLab ITIL Java JavaScript Jenkins Kanban Privacy Python Scripting Scrum Security strategy Strategy Terraform Vulnerabilities
Perks/benefits: Career development Flex hours Home office stipend Snacks / Drinks Startup environment Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.