Vinova Pte. Ltd. logo

Devsecops Engineer

Vinova Pte. Ltd.

D12 Toa Payoh, Balestier, SerangoonContractS$7,900 – S$9,000/mo

Posted 7 Jul 2026

About this role

Position Overview We are seeking an experienced DevSecOps with Observability Engineer to join our team and drive the implementation of secure, scalable, and comprehensively observable cloud infrastructure. The successful candidate will be responsible for building and maintaining CI/CD pipelines, implementing security controls throughout the development lifecycle, and establishing enterprise-grade observability practices that provide deep insights into system performance, security posture, and operational health across our entire technology stack. Key Responsibilities Infrastructure & Cloud Management Design, implement, and maintain cloud infrastructure on AWS using Infrastructure as Code principles. Manage containerised applications using Amazon EKS and ensure optimal performance, security, and cost efficiency. Collaborate with development teams to architect scalable solutions that meet both functional and non-functional requirements whilst embedding observability from the ground up. Security Controls Implementation Implement and maintain security controls throughout the development lifecycle, from code commit to production deployment. Integrate automated security testing, static and dynamic code analysis, and vulnerability scanning into CI/CD pipelines. Establish security gates and approval processes that prevent vulnerable code from reaching production environments. Develop and enforce security policies for container images, infrastructure configurations, and application deployments with comprehensive security observability. Advanced Monitoring & Observability Design and implement enterprise-grade observability solutions using ELK Stack or Prometheus-Grafana to provide comprehensive insights into system performance, security events, and operational health. Architect distributed tracing solutions using OpenTelemetry to monitor application performance across complex microservices architectures and troubleshoot issues with precision. Create sophisticated dashboards, alerts, and reporting mechanisms that provide actionable insights to stakeholders whilst ensuring security events, performance anomalies, and operational issues are proactively identified and investigated. Implement observability-driven incident response and post-mortem processes. CI/CD Pipeline Management Build, maintain, and optimise CI/CD pipelines using GitLab Runners to enable rapid, reliable, and secure software delivery. Embed security controls and observability instrumentation at every stage of the pipeline including pre- commit hooks, automated security testing, compliance checks, and deployment validation. Implement automated testing, security scanning, and deployment processes that support continuous integration and deployment practices whilst maintaining zero-trust security principles and comprehensive pipeline observability. Infrastructure as Code & Policy as Code Implementation Leverage Infrastructure as Code tools, particularly Terraform, to automate infrastructure provisioning and management with built-in security controls, compliance checks, and observability instrumentation. Implement Policy as Code frameworks to codify governance, compliance, and security policies that are automatically enforced across all infrastructure deployments. Develop custom automation scripts and tools to streamline operational processes whilst ensuring security standards and observability requirements are maintained. Integrate and utilise GenAI-based coding agents to enhance development productivity and code quality, implementing appropriate security guardrails and observability for AI-assisted development. Observability Strategy & Implementation Develop and execute comprehensive observability strategies that encompass metrics, logs, traces, and events across the entire application and infrastructure stack. Implement service level objectives (SLOs) and service level indicators (SLIs) to measure and improve system reliability. Design and maintain observability platforms that support real-time monitoring, historical analysis, and predictive insights for both operational and security use cases. Essential Requirements Technical Skills • Extensive experience with AWS cloud services and architecture patterns • Strong proficiency in Terraform for Infrastructure as Code implementation, including advanced features such as modules, workspaces, and state management • Deep hands-on experience with ELK Stack (Elasticsearch, Logstash, Kibana) or Grafana for monitoring, vis…

What they're looking for

Security ControlsTerraformTechnical SkillsInfrastructure as Code (IaC)

About Vinova Pte. Ltd.

Industry: Information & communicationsSize: 250Website ↗

Frequently asked questions

What does a Devsecops Engineer at Vinova Pte. Ltd. do?

Position Overview We are seeking an experienced DevSecOps with Observability Engineer to join our team and drive the implementation of secure, scalable, and comprehensively observable cloud infrastructure. The successful candidate will be responsible for building and maintaining CI/CD pipelines, imp…

What skills does this Devsecops Engineer role need?

Key skills for this role include Security Controls, Terraform, Technical Skills, Infrastructure as Code (IaC).

How much does a Devsecops Engineer at Vinova Pte. Ltd. pay?

This role lists a salary of S$7,900 – S$9,000 per month.

Is this Devsecops Engineer role remote, hybrid, or on-site?

The listing is based in D12 Toa Payoh, Balestier, Serangoon. Check the posting for remote or hybrid options.

How do I apply for this Devsecops Engineer role?

You can apply directly on Vinova Pte. Ltd.'s careers page. ApplyLah can tailor your résumé and cover letter to this exact role in seconds first.