Senior DevSecOps Engineer

Joining Razer will place you on a global mission to revolutionize the way the world games. Razer is a place to do great work, offering you the opportunity to make an impact globally while working across a global team located across 5 continents. Razer is also a great place to work, providing you the unique, gamer-centric #LifeAtRazer experience that will put you in an accelerated growth, both personally and professionally.Job Responsibilities :- Lead and manage the implementation and maintenance of DevSecOps practices, integrating security and compliance into the software development lifecycle.- Collaborate with development, operations, and security teams to establish secure development processes, tools, and standards.- Identify and assess technology risks, vulnerabilities, and threats, and develop strategies to mitigate them.- Ensure compliance with relevant regulations, industry standards, and internal policies, including data privacy, cybersecurity, and software licensing.- Establish and enforce security controls and measures, such as access controls, encryption, secure coding practices, and incident response procedures.- Conduct regular security audits, vulnerability assessments, and penetration tests to identify and address potential vulnerabilities.- Provide guidance and support to development teams on secure coding practices and security best practices.- Stay updated with the latest security threats, trends, and technologies, and recommend appropriate security measures and tools.- Collaborate with legal and compliance teams to ensure alignment between technology risk management and overall organizational risk management.- Work with external auditors and regulators during compliance assessments and audits.Pre-Requisites :- Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree preferred.- Proven experience in DevSecOps practices, security engineering, or a similar role.- Familiarity with compliance requirements specific to the organization's industry (e.g., PCI-DSS, HIPAA, etc.).- In-depth knowledge of technology risk management, cybersecurity, and compliance frameworks (e.g., ISO 27001, NIST, GDPR, etc.).- Familiarity with secure coding practices and security testing tools (e.g., OWASP Top 10, SAST, DAST, etc.).- Strong understanding of cloud security principles and best practices (e.g., AWS, AliCloud, Azure, GCP).- Experience with security incident response and forensic investigation.- Excellent knowledge of software development methodologies and the ability to integrate security practices within agile and DevOps environments.- Strong analytical and problem-solving skills, with the ability to assess risks and develop appropriate mitigation strategies.- Excellent communication and leadership skills to effectively collaborate with cross-functional teams and senior stakeholders.- Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Ethical Hacker (CEH) are highly desirable.Are you game?