Activate Interactive

DevSecOps Engineer - A26208

Activate Interactive  •  Singapore, SG (Onsite)  •  4 hours ago
Apply
Save Job
Mark Applied Mark Interviewed Mark Offered
Hide Job Report Job
AI can make mistakes so check important info. Chat history is never stored.

Job Description

Activate Interactive Pte Ltd (“Activate”) is a leading technology consultancy headquartered in Singapore with a presence in Malaysia and Indonesia. Our clients are empowered with quality, cost-effective, and impactful end-to-end application development, like mobile and web applications, and cloud technology that remove technology roadblocks and increase their business efficiency.

We believe in positively impacting the lives of people around us and the environment we live in through the use of technology. Hence, we are committed to providing a conducive environment for all employees to realize their full potential, who in turn have the opportunity to continuously drive innovation.

We are searching for our next team members to join our growing team.

If you love the idea of being part of a growing company with exciting prospects in mobile and web technologies that create positive impact on people’s lives, then we would love to hear from you.

This is a 12 months fixed term contract role.

What will you do?

We are seeking an experienced DevSecOps with Observability Engineer to join our team and drive the implementation of secure, scalable, and comprehensively observable cloud infrastructure. The successful candidate will be responsible for building and maintaining CI/CD pipelines, implementing security controls throughout the development lifecycle, and establishing enterprise-grade observability practices that provide deep insights into system performance, security posture, and operational health across our entire technology stack.

Infrastructure & Cloud Management

  • Design, implement, and maintain cloud infrastructure on AWS using Infrastructure as Code principles. Manage containerized applications using Amazon EKS and ensure optimal performance, security, and cost efficiency. Collaborate with development teams to architect scalable solutions that meet both functional and non-functional requirements whilst embedding observability from the ground up.

Security Controls Implementation

  • Implement and maintain security controls throughout the development lifecycle, from code commit to production deployment. Integrate automated security testing, static and dynamic code analysis, and vulnerability scanning into CI/CD pipelines. Establish security gates and approval processes that prevent vulnerable code from reaching production environments. Develop and enforce security policies for container images, infrastructure configurations, and application deployments with comprehensive security observability.

Advanced Monitoring & Observability

  • Design and implement enterprise-grade observability solutions using ELK Stack or Prometheus-Grafana to provide comprehensive insights into system performance, security events, and operational health. Architect distributed tracing solutions using OpenTelemetry to monitor application performance across complex microservices architectures and troubleshoot issues with precision. Create sophisticated dashboards, alerts, and reporting mechanisms that provide actionable insights to stakeholders whilst ensuring security events, performance anomalies, and operational issues are proactively identified and investigated. Implement observability-driven incident response and post-mortem processes.

CI/CD Pipeline Management

  • Build, maintain, and optimise CI/CD pipelines using GitLab Runners to enable rapid, reliable, and secure software delivery. Embed security controls and observability instrumentation at every stage of the pipeline including pre-commit hooks, automated security testing, compliance checks, and deployment validation. Implement automated testing, security scanning, and deployment processes that support continuous integration and deployment practices whilst maintaining zero-trust security principles and comprehensive pipeline observability.

Infrastructure as Code & Policy as Code Implementation

  • Leverage Infrastructure as Code tools, particularly Terraform, to automate infrastructure provisioning and management with built-in security controls, compliance checks, and observability instrumentation. Implement Policy as Code frameworks to codify governance, compliance, and security policies that are automatically enforced across all infrastructure deployments. Develop custom automation scripts and tools to streamline operational processes whilst ensuring security standards and observability requirements are maintained. Integrate and utilize GenAI-based coding agents to enhance development productivity and code quality, implementing appropriate security guardrails and observability for AI-assisted development.

Observability Strategy & Implementation

  • Develop and execute comprehensive observability strategies that encompass metrics, logs, traces, and events across the entire application and infrastructure stack. Implement service level objectives (SLOs) and service level indicators (SLIs) to measure and improve system reliability. Design and maintain observability platforms that support real-time monitoring, historical analysis, and predictive insights for both operational and security use cases

Requirements

Technical Skills

  • Extensive experience with AWS cloud services and architecture patterns
  • Strong proficiency in Terraform for Infrastructure as Code implementation, including advanced features such as modules, workspaces, and state management
  • Deep hands-on experience with ELK Stack (Elasticsearch, Logstash, Kibana) or Grafana for monitoring, visualisation, and observability
  • Strong knowledge of Amazon EKS and container orchestration with observability best practices
  • Advanced experience implementing observability solutions and distributed tracing with OpenTelemetry across complex distributed systems
  • Proficiency with GitLab or GitHub for version control and CI/CD pipeline management
  • Experience with GenAI-based coding agents and AI-assisted development tools

Observability Expertise

  • Proven experience designing and implementing comprehensive observability strategies for large-scale distributed systems
  • Deep understanding of the three pillars of observability: metrics, logs, and traces, and their integration
  • Experience with observability tools such as Prometheus, Splunk, or commercial APM solutions
  • Knowledge of observability data correlation, anomaly detection, and automated alerting strategies
  • Understanding of observability-driven development and operational practices

Security & Compliance

  • Strong understanding of DevSecOps principles and implementing security controls throughout the development lifecycle using Infrastructure as Code and Policy as Code methodologies
  • Experience with security scanning tools, SAST/DAST solutions, and vulnerability management integrated into IaC workflows and automated through policy enforcement
  • Knowledge of compliance frameworks, security standards, and regulatory requirements codified and enforced through Policy as Code implementations
  • Understanding of network security, identity and access management, and data protection defined and managed through Infrastructure as Code templates and policy definitions
  • Experience with security orchestration and incident response procedures automated and standardized through Infrastructure as Code and Policy as Code frameworks

Professional Experience

  • Minimum 5 years of experience in DevOps, SRE, or similar roles with security and observability focus
  • Minimum 2 years of hands-on Terraform experience in production environments
  • Proven track record of implementing and managing secure cloud infrastructure at scale with comprehensive observability
  • Experience working in Agile development environments with security integration and observability practices
  • Strong problem-solving skills and ability to work under pressure whilst maintaining security standards and observability requirements

Preferred Qualifications

  • AWS certifications (Solutions Architect, DevOps Engineer, or Security Specialty)
  • HashiCorp Certified: Terraform Associate or Professional certification
  • Observability and monitoring certifications or demonstrable experience
  • Experience with Terraform Enterprise or Terraform Cloud
  • Experience with additional monitoring tools, APM solutions, and observability platforms
  • Experience with policy-as-code and governance automation using tools like Sentinel or Open Policy Agent
  • Background in software development with understanding of secure coding practices and observability instrumentation

Benefits

What do we offer in return?

  • Fun working environment
  • Employee Wellness Program
  • To work in Singapore Government Agencies projects
  • We provide structured development framework and growth opportunities. (We are a “SHRI 2025 Gold winner” in “Learning & Development; Coaching & Mentoring”)

Why you'll love working with us?

If you are looking for opportunities to collaborate with leading industry experts and be surrounded by highly motivated and talented peers, we welcome you to join us. We provide all employees with equal opportunities to grow and develop with us. We believe your success is our success.

Does it sound like something you are interested in exploring further? Please be in touch with our team for an initial chat at careers@activate.sg

Activate Interactive Singapore is an equal opportunity employer. Employment decisions will be based on merit, qualifications and abilities. Activate Interactive Pte Ltd does not discriminate in employment opportunities or practices on the basis of race, colour, religion, gender, sexuality, national origin, age, disability, marital status or any other characteristics protected by law.

Protecting your privacy and the security of your data are longstanding top priorities for Activate Interactive Pte Ltd.

Your personal data will be processed for the purposes of managing Activate Interactive Pte Ltd’s recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results, and as is otherwise needed in the recruitment and hiring processes.

Please consult our Privacy Notice ( https://www.activate.sg/privacy-policy) to know more about how we collect, use, and transfer the personal data of our candidates. Here you can find how you can request for access, correction and/or withdrawal of your Personal Data.

Activate Interactive

About Activate Interactive

Founded in 1997, Activate Interactive Pte Ltd is a leading technology consultancy in Singapore that fuses strategy consulting, creativity, and engineering to drive digital innovations. ​

​We offer quality, cost-effective and impactful end-to-end application development, including mobile and web applications, cloud technology, UI/UX design and more.​

​We integrate digital technology into all areas of a business, helping clients remove technology roadblocks and increase their efficiency to better serve and deliver value to their communities, regardless of their business size and type.​

At Activate, we also believe in providing a conducive environment and developing our employees to realise their full potential. Today, we have a team of more than 150 employees.

​We aspire to help people live better and healthier with technology by providing holistic solutions to improve population health. ​

Industry
IT & Software
Company Size
51-200 employees
Headquarters
Singapore, SG
Year Founded
1997
Website
activate.sg
Social Media