jobs in Hytech

Kerja Sepenuh Masa, Senior DevSecOps Security Engineer di Hytech Federal Territory - Maukerja

Senior DevSecOps Security Engineer

Hytech

Undisclosed

KL City, Federal Territory

Kongsi
Simpan

Lokasi Kerja

  • Jalan Sultan Mizan Zainal Abidin, Kompleks Kerajaan Kuala Lumpur Federal Territory Malaysia

Penerangan Kerja

Tanggungjawab

About Hytech

Hytech is a leading management consulting firm headquartered in Australia and Singapore, specialising in digital transformation for fintech and financial services organisations. We deliver end-to-end consulting services and provide robust middle- and back-office solutions that enable our clients to optimise operations, enhance efficiency, and stay ahead in a fast-evolving digital landscape.

With more than 2,000 professionals worldwide, Hytech has a strong and growing international presence, with offices across Australia, Singapore, Malaysia, Taiwan, the Philippines, Thailand, Morocco, Cyprus, Dubai, and beyond.


About Role

We are hiring Senior DevSecOps Security Engineers to implement security architecture and standards across AWS, IAM/PAM, KMS/Secrets, Security Groups, JumpServer, Archery, CI/CD, and software supply chain security.

This role is suitable for senior security engineers with experience in cloud security, platform security, security automation, CI/CD security, or identity and access governance. Candidates must have strong AI capability and be able to use AI to improve configuration review, script generation, log analysis, IAM policy review, vulnerability analysis, CI/CD review, and automation efficiency.

Key Responsibilities

  • Implement AWS multi-account security baselines, including CloudTrail, GuardDuty, Security Hub, AWS Config, SCP, account onboarding, and baseline drift detection.
  • Support IAM/PAM, JumpServer, Archery, break-glass access, SSH key, production access, and database access governance.
  • Implement KMS, Secrets Manager, access key, token, certificate, and key rotation controls.
  • Govern Security Groups, NACLs, VPC segmentation, public exposure, egress control, and network drift.
  • Implement Jenkins, ArgoCD, Bitbucket, SAST, SCA, IaC scanning, secrets scanning, SBOM, and pipeline security gates.
  • Use Terraform, Python, CI/CD, scripting, or security tools to automate detection, remediation guidance, and dashboards.
  • Use AI to generate scripts, analyze configuration risks, review IAM policies, review Terraform / CI/CD configurations, produce remediation recommendations, summarize baseline gaps, and prepare risk summaries.
  • Integrate AI into daily DevSecOps workflows, such as AI-assisted IaC Review, AI-assisted IAM Review, and AI-assisted CI/CD Security Review.
  • Partner with DevOps, Infrastructure, R&D, and DBA teams to drive remediation and process improvement.
  • Support incident recovery through credential cleanup, account hardening, network exposure reduction, CI/CD hardening, and control restoration.
  • Work with SOC, Red Team, and GRC to ensure controls can be monitored, validated, and reviewed.


Requirements

  • 6+ years of experience in DevSecOps, cloud security, security engineering, platform security, or application security.
  • Familiarity with AWS security capabilities including IAM, VPC, KMS, CloudTrail, GuardDuty, Security Hub, and Security Groups.
  • Strong experience in at least two of the following areas: IAM/PAM, KMS/Secrets, cloud network security, CI/CD security, container security, or database access governance.
  • Hands-on experience with Terraform / IaC, Python / Shell, CI/CD pipelines, or security automation.
  • Good understanding of least privilege, credential lifecycle, production access auditing, security baselines, and security gates.
  • Strong AI capability, with the ability to improve security engineering efficiency using AI and validate AI-generated scripts, policies, configuration analysis, and remediation recommendations.
  • Understanding of sensitive information protection when using AI, avoiding the use of non-compliant AI tools for secrets, production data, customer information, or unmasked logs.
  • Ability to work with DevOps, R&D, Infrastructure, and DBA teams to drive remediation.
  • Strong analytical, documentation, and execution skills.


Preferred Qualifications

  • Experience with Jenkins, ArgoCD, Bitbucket, Kubernetes, Terraform, Vault, or Secrets Manager.
  • Experience implementing SAST, SCA, IaC scanning, secrets scanning, SBOM, or container image scanning.
  • Experience with AI-assisted DevSecOps, AI-assisted IaC review, or AI-assisted CI/CD security review.
  • Experience in fintech, payments, trading platforms, Web3, or large-scale cloud platform security.
  • Experience in incident recovery, access reduction, credential rotation, or CI/CD hardening.


What We Offer

  • Easy access to public transportation (LRT & KTM).
  • Transportation allowance.
  • Corporate insurance coverage, including dental, optical, and outpatient claims.
  • Gym and fitness claims.
  • Ongoing training and development opportunities.
  • Exposure to exciting projects that support career growth and professional development.

Peringatan Penting

Jangan pernah kongsikan maklumat bank atau kad kredit anda semasa memohon pekerjaan. Elakkan membuat sebarang pembayaran atau mengisi survey yang tidak berkaitan. Jika ada yang mencurigakan, sila laporkan iklan pekerjaan ini segera.

Lebih Lanjut