DevSecOps Engineer

Roles and Responsibilities

1. Support cost optimisation for GCC environment
2. Project administration and documentation (procurement, audit, etc.)
3. Drive cloud-related initiatives with other teams (coordination)
4. Advise and support project teams with cloud-based domain knowledge
5. Support incident management (when needed)
6. Plan and organise workshops
7. Support operations for applications hosted on Amazon Web Services (AWS) or Government on Commercial Cloud (GCC)
8. Present and share new ideas or information with department or management committee
9. Analyse the Ministry of Manpower (MOM) needs, scope the problem and develop a business case to address the problem
10. Document requirements, source and evaluate alternatives, and recommend solutions that best fit the Ministry of Manpower’s needs
11. Work with MOM vendor and app vendor on the solutions and design to seek clarification and acceptance
12. Assess and ensure applications are in full compliance with IM8 and security requirements laid out by Government Technology Agency (GovTech) or MOM
13. Remediate any non-compliance or security findings related to accounts in GCC environment
14. Perform scripting or low-code development
15. Review and refine existing processes and workflows to improve efficiencies

Knowledge and Skills

EDUCATIONAL QUALIFICATIONS

1. Tertiary education in Computer/Computer Science or Information Technology or equivalent
2. AWS certifications such as Developer (Associate) Certification, AWS SysOps Administrator (Associate), AWS Solution Architect (Associate/Professional), AWS DevOps Engineer (Professional) are preferred
3. Knowledge of serverless architectures
4. Familiarity with various coding languages, such as Python, Java, etc.

RELEVANT EXPERIENCE

1. Ability to work both independently and as part of a team with professionals at all levels
2. Results oriented
3. Hands-on experience in handling operations and incident management
4. Strong proficiency in AWS services and architecture
5. Experience with infrastructure-as-code tools (e.g., Terraform, CloudFormation)
6. Proficiency in scripting languages (e.g., Python, Java)
7. Familiarity with security tools and practices (e.g., SAST, DAST, IAST)
8. Understanding of cloud security best practices
9. Experience with monitoring and logging tools (e.g., CloudWatch)
10. Experience in supporting operations for applications hosted on Amazon Web Services (AWS) or Government on Commercial Cloud (GCC)
11. Familiarity with governance and adoption for enterprise IT environments
12. Strong analytical, conceptualisation and problem-solving skills
13. Team player with strong organization and people handling skills
14. Excellent communication skills, both oral and written, with the ability to pitch ideas and influence stakeholders
15. Working experience in government environment and/or cybersecurity related fields will be an added advantage
16. Advantageous to have experience in the following areas:
17. Government IM8 policies