DevSecOps Engineer

About FWD Group

FWD Group is a pan-Asian life and health insurance business with more than 12 million customers across 10 markets, including some of the fastest-growing insurance markets in the world. The company was established in 2013 and is focused on changing the way people feel about insurance. FWD’s customer-led and digitally enabled approach aims to deliver innovative propositions, easy-to-understand products and a simpler insurance experience.

For more information, please visit www.fwd.com

About FWD Life Philippines 

FWD Life Insurance Corporation (FWD Life Philippines) launched its commercial operations in September 2014. As of end-2022, FWD Life Philippines ranks 3rd and 6th in terms of Paid-up Capital(1) and New Business Annual Premium Equivalent(2), respectively.

For more information, please visit fwd.com.ph. 

1 www.insurance.gov.ph > Statistics > Life > 2022 > Based on Paid-Up Capital

2 www.insurance.gov.ph > Statistics > Life > 2022 > Based on New Business Annual Premium Equivalent

Job Purpose:

The purpose of this role is to bridge the development, security and operations processes in relation to the delivery of technical solutions. This role shall work with developers and other IT groups to oversee the code releases by establishing and maintaining a process and set of tool chains to improve the team’s productivity, standardize the release process and reduce the manual intervention for releases.

Key Responsibilities:

Planning and Setup

• Support and improve the Software Development Life Cycle process by implementing a DevSecOps toolchain (such as but not limited to: CI/CD tools, testing, vulnerability assessment…etc.)
• Using the appropriate tools, this role will integrate the different project functions and resources across the software development life cycle.
• Maintain standards through release automations and integrations
• Actively collaborates with various IT functional area for continuous automation improvements and assessments of new development process requirements
• Plan the team activities, and involvement in DevSecOps setup
• Work with Architects to design highly available environments in the cloud through Infrastructure-as-Code (IaC) and configuration management.

Operations:

• Define and set the development, test, release, update, and support processes for DevOps operation
• Shall have the capacity to review, verify, and validate the software code developed in the project
• Participate in troubleshooting and fixing of code bugs
• Monitor the processes during the entire lifecycle and analyze if there are updates or new processes needed to improve the SDLC process
• Identify and deploy cybersecurity measures by continuously performing vulnerability assessment and risk management
• Conduct incidence management and root cause analysis
• Strive for continuous improvement and build continuous integration, continuous development, and constant deployment pipeline (CI/CD Pipeline)
• Conduct knowledge transfer through mentoring and guiding the team members
• Monitor and measure agreed KPIs
• Manage periodic reporting to the manager

Administrative

• Promotes engagement through participation on various company and team led activities
• Attend alignment/checkpoint meeting set by the manager
• Perform self-assessment for required trainings and tools to improve the ways of working
• Perform other tasks assigned as assigned by superior.

Education & Certification:

• Graduate of any 4-year IT course. Preferably BS Computer Science.
• With one or more recognized security and cloud specific certifications (CCSP, SSCP, CISSP, CCSK, GCP Cloud Architect, AWS Solutions Architect, etc.) is an advantage

Experience:

• At least 3 years working experience in DevOps engineering, and CI/CD tooling
• At least 2 years working experience with cloud technologies (such as AWS, GCP, Azure)
• Experience with container technologies (Docker, Kubernetes) from building to deploying to securing
• Experience in application monitoring, telemetry gathering, and associated utilities (AWS Cloudwatch, Azure Monitor, etc)
• Strong Linux Experience, Networking Fundamentals, Systems Understanding
• Familiarity with API Security, Container Security, Cloud Security, & Code Security tools such as Trivy, Claire, OpenVAS/Greenbone, Rapid7, Palo Alto Prisma, SonarQube, SonarCloud, CodeClimate, etc
• Familiarity with programming/scripting languages such as Phython, Java, PHP, JS
• Familiarity with databases such as MSSQL, MySQL, MongoDB, PostgreSQL, Redis

Privacy Notice

Your privacy is a priority for FWD.  The Company keeps your personal information with us in confidence. To know more about how we process your information, kindly refer to our FWD Recruitment Privacy Notice.

FWD has partnered with Talocity Instasolutions Private Limited (“Talocity”) to manage the initial filtering of candidate’s profiles through video interviews, social profile mapping, and video analytics using artificial intelligence engine that is offered within the Talocity platform.  The platform evaluates the candidate on the five well-known dimensions as per OCEAN Personality Model that influence occupational success and help understand workplace behavior. For more information, please refer to Talocity Privacy Policy.

When you apply, FWD will share your name, phone number and email address to Talocity to contact you and conduct the initial screening and profiling process.  Shortlisted candidates will then be contacted by FWD for the face-to-face interview.