Marketnode is a digital market infrastructure (DMI) operator backed by Euroclear, HSBC, SGX Group and Temasek. We believe in the power of programmable assets and that traditional financial instruments will originated, transacted and served better leveraging emerging technologies such as blockchain. Our approach to building market infrastructure is one of partnership with the industry.
At Marketnode, our DMI suite covers the following:
- Data services: AI powered structured data and extraction tools
- Funds & transaction management: operating Fundnode, a funds transaction management and settlement platform
- Digital Assets: multi-asset tokenization, record keeping and asset servicing
We are looking for a multi-facing, execution-focused Senior DevSecOps Engineer with strong cloud security expertise to partner with the DevOps team in securing and shaping the company’s platform. The engineer will own the security of critical systems, review and harden cloud architectures (particularly Azure and Kubernetes), establish security best practices, identify and remediate vulnerabilities, and implement “shift-left” security tooling to detect issues earlier in the development lifecycle.
What You'll Do
- Be responsible for overall security of critical systems and services
- Review cloud deployment architectures and implement required security controls
- Set security best practices for Azure and Kubernetes
- Identify security vulnerabilities in the system and implement necessary solutions to remediate the vulnerabilities
- Implement tools to shift security left and reduce the time taken to detect vulnerabilities
- Articulate associated risks and propose mitigations on related source code reviews, vulnerability assessments, DevSecOps and pentest findings to stakeholders and management
- Work with partners and vendors to ensure compliance of security requirements
Requirements:
- 5+ years of Cloud Security/DevSecOps experience
- Experience and working knowledge of SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing) and SCA (Software Composition Analysis) tools (including their strength and weakness)
- Excellent knowledge of cloud security best practices and solutions in cloud security posture management and cloud security workload management
- Ability to perform automation using Terraform, Docker/Kubernetes, and any one CI tools (e.g. Github Actions, Bitbucket pipeline)
- Act as a key security liaison with external parties, including auditors, regulators, and security assessors, to support audits, reviews, and security assessments
- Support customer security onboarding and ongoing communications by addressing security questionnaires, architecture reviews, and technical assurance discussions
- Professional or Speciality (Security) Certifications in Azure, Kubernetes or Cyber security certifications including CISSP, CISM, CompTIA Security+ and GSEC is a plus
- Knowledge of regulatory requirements related to Privacy, including but not limited to MAS TRM, GDPR, HIPAA, CCPA, ISO 27001, SOC and the NIST standards or equivalent