7 days ago
Taipei, TaiwanSenior / Mid Level
Responsibilities
- Design, implement, and maintain secure CI/CD pipelines with automated security controls.
- Establish and drive the Secure Software Development Lifecycle (SSDLC).
- Define and standardize security requirements analysis and threat modeling practices.
- Develop Policy as Code solutions for automated compliance and governance checks.
- Conduct pre-production security assessments, vulnerability assessments, and penetration testing.
- Implement security best practices for Infrastructure as Code (IaC) and cloud-native environments.
- Build and maintain security monitoring, log aggregation, and alerting systems.
- Create security deployment checklists and improve production environment security posture.
- Assess and mitigate emerging risks introduced by AI technologies.
- Partner with engineering teams to evaluate and govern AI-powered development tools.
Requirements
- Minimum 4 years of experience in cybersecurity, DevSecOps, or software development.
- Solid understanding of the Secure Software Development Lifecycle (SSDLC).
- Hands-on experience in software product engineering, deployment, and system integration.
- Practical experience leveraging AI automation or AI agents in day-to-day work.
- Ability to evaluate product performance metrics and drive resolution.
- Strong communication and interpersonal skills for effective collaboration.