DevOps/Security Engineer - Remote

About Epsilon Lab Vietnam
Epsilon Lab VN, specializes in developing and implementing cutting-edge ERP and CRM solutions. We create innovative enterprise software solutions that help businesses streamline their operations and enhance customer relationships.

Position Overview
We are looking for a DevOps & Security Engineer with 3-5 years of experience to enhance the security, automation, and reliability of our cloud infrastructure and development pipelines. This role focuses on GitHub security, cloud infrastructure, CI/CD automation, endpoint security, and system monitoring to ensure the stability and security of our applications and internal systems. As a key member of the DevOps & Security team, you will work closely with developers, IT security specialists, and cloud engineers to implement best practices in DevSecOps, infrastructure automation, and system monitoring.

Key Responsibilities
GitHub & Code Security

• Implement Role-Based Access Control (RBAC) and enforce branch protection rules.
• Monitor repository activity to prevent unauthorized cloning or code leaks.
• Automate security scanning using tools like Snyk, SonarQube, Trivy.

Cloud Infrastructure & DevOps Automation

• Deploy and manage AWS, Azure, or GCP infrastructure for CRM & ERP solutions.
• Automate cloud provisioning with Terraform or Ansible to reduce manual work.
• Optimize cloud costs and implement auto-scaling to handle traffic spikes.

CI/CD Pipeline & Deployment Management

• Build and maintain CI/CD pipelines using GitHub Actions, GitLab CI/CD, or Jenkins.
• Implement zero-downtime deployment strategies (Blue-Green, Canary Releases).
• Ensure fast and secure application rollouts through automation and security best practices.

Laptop, VPN & Endpoint Security

• Set up BitLocker (Windows) or FileVault (Mac) for disk encryption.
• Install and configure endpoint security tools (CrowdStrike, SentinelOne, Microsoft Defender).
• Deploy VPN solutions (WireGuard, OpenVPN, Cisco AnyConnect) for secure remote access.
• Implement USB & Data Loss Prevention (DLP) policies to block unauthorized downloads.
• Ensure automatic OS & security updates for all employee devices.

System Monitoring & Threat Detection

• Set up real-time logging & monitoring with Prometheus, Grafana, Datadog.
• Configure SIEM tools (Splunk, ELK, Azure Sentinel) for security monitoring.
• Set up alerts for downtime, security threats, and system performance issues.

• Have atleast 3-5 years of experience in DevOps, Cloud Security, or DevSecOps.
• Strong knowledge of GitHub security, CI/CD automation, and cloud infrastructure.
• Experience with AWS, Azure, or GCP (Compute, Networking, IAM).
• Proficiency in Terraform, Ansible, or Kubernetes (is a plus).
• Strong understanding of endpoint security, VPN setup, and access control policies.
• Experience with SIEM tools (Splunk, ELK, Azure Sentinel) for security monitoring.
• Strong scripting skills in Bash, Python, or PowerShell.

Interview Process: Our interview process consists of two rounds, Round 01 (Online) and Round 2 (Offline)
What We Offer:

• Opportunity to receive company tokens after 1 year of service
• Government social, health and unemployment insurance
• Professional development opportunities
• Modern work equipment, creative and modern workplace.
• Teamwork with international talents
• Annual leave and paid time off
• Team building activities
• Work hard, play hard.

Location and Working Hour:

• Location: Ward Thanh My Loi Thu Duc City, Ho Chi Minh City Vietnam
• Working hours: Flexible working hours