Kerja Sepenuh Masa, DevSecOps Engineer di NEXTLABS (MALAYSIA) SDN BHD - Maukerja

 Requirements

• 2–5 years of experience in a SecOps or related security role.
• Experience with GRC tools (e.g., ServiceNow GRC, RSA Archer) and security standards (ISO 27001, SOC 2, NIST).
• Hands-on knowledge of CI/CD pipelines and integrating security tools.
• Experience with cloud platforms (AWS, Azure, or GCP) and securing cloud environments.
• Strong scripting skills (Python, Bash, etc.) preferred.
• Excellent communication and documentation skills.

Preferred Qualifications

• Relevant certifications (e.g., CISSP, CISA, CRISC, or ISO 27001 Lead Implementer).

We are looking for a SecOps Engineer with a strong focus on the Governance, Risk, and Compliance (GRC) domain.

You will be part of our growing DevSecOps team, responsible for implementing, maintaining, and improving our security posture across environments.

Responsibilities

• Support the implementation and operationalization of GRC frameworks (e.g., NIST, ISO 27001, SOC 2).
• Work with cross-functional teams to ensure security controls and policies are effectively enforced.
• Manage vulnerability scanning, SIEM systems, and incident response processes.
• Assist in audit preparation and response activities.
• Maintain compliance documentation and risk registers.
• Develop automation scripts/tools to streamline SecOps processes.