(Sr.) Staff DevSecOps Engineer
Job Description
- Official project and team leader experience is a plus.
- Strong communication and collaboration skills.
- Excellent problem-solving and analytical skills, with a proactive and results-oriented mindset.
- Continuous learning mindset, with a passion for keeping up with industry trends and technologies.
- Design and implement secure CI/CD process and artifacts management with multiple systems (GitHub, Fortify, Black Duck, AWS/Azure, JFrog, K8S…)
- Analyze existing CI/CD process and tool chain, provide advanced release process, code security and security tool chain consultant service.
- Collect, consolidate and analyze products DevSecOps requirement and design detail solution.
- Research new industrial technologies in DevOps tool chain and security solution, proving their end-to-end value.
- Initiate and lead projects to enhance security and efficiency for product release and operation.
- Integrate AI into development workflows to enhance efficiency and security, including AI for code review, automated testing, and continuous integration.
- Bachelor’s degree in computer science, software engineering or related fields AND 7+ years of experience in software development.
- Solid knowledge of either Python, JavaScript, or GoLang.
- Good Experience with DevSecOps including automated CI/CD pipelines, infra as code, security enforcement and SaaS operation.
- Proven experience in integrating AI into development workflows, including designing structured prompts, validating AI outputs, and refining AI-assisted processes.
- Familiar with public cloud and docker solutions like AWS, Azure, K8s, EKS.
Overview
RDSec Team is committed to continuously improving the efficiency and security of Trend Micro product development lifecycle. This job is to work with Product Development team, guide the release of products or services with the advanced knowledge of DevOps tool chain in security solution. You will have chance to design and implement the complex and secure release pipeline for production, which is related to secure CI/CD, secure operation, code security, Cloud, Infra as code, data analysis, etc.:
Responsibility
1. Design and implement the secure CI/CD process and artifacts management with multiple systems (GitHub, Fortify, Black Duck, AWS/Azure, JFrog, K8S…)
2. Analyze the existing CI/CD process and tool chain, understand the pains or needs of the product teams, and then provide advanced release process, code security and security tool chain consultant service to the teams.
3. Collect, consolidate and analyze the products DevSecOps requirement and design the detail solution.
4. Research the new industrial technologies in DevOps tool chain and security solution. And prove their end-to-end value.
5. Initiate and lead project to enhance the security and efficiency for the product release and operation.
6. Integrate AI into development workflows to enhance efficiency and security, including the use of AI for code review, automated testing, and continuous integration.
Qualification/Requirement
- Bachelor’s degree in computer science, software engineering or related fields AND 7+ years of experience in software development or equivalent work experience.
- Solid knowledge of either one of backend programming such as Python, JavaScript, GoLang.
- Good Experience with DevSecOps including automated CI/CD pipelines, infra as code, security enforcement and SaaS operation.
- Proven experience in integrating AI into development workflows, including the ability to design structured prompts, validate AI outputs, and iteratively refine AI-assisted processes.
- Familiar with the public cloud and docker solution like: AWS, Azure, K8s, EKS, etc.
- Strong communication and collaboration skills, with the ability to work on the cross team and cross site solutions.
- Official project and team leader experience is a plus.
- Excellent problem-solving and analytical skills, with a proactive and results-oriented mindset.
- Continuous learning mindset, with a passion for keeping up with industry trends and technologies.
