
DevSecOps Engineer
On-site
Full Time
#Healthcare
#Telemedicine
#Information Security
#AWS
#Terraform
#Linux
#Bash Scripting
#Python
#ISO 27001
#CloudFormation
#Docker
#Kubernetes
#SIEM
WhiteCoat is a regional digital healthcare leader headquartered in Singapore. We are dedicated to transforming the healthcare landscape across Southeast Asia through innovation and data-driven technology. Our platform provides a wide range of services, including on-demand telemedicine, chronic disease management, and home-based medical care. By partnering with insurance providers, government bodies, and major organizations, we are expanding access to affordable, high-quality care. We are currently seeking a DevSecOps Engineer to join our team on a full-time, on-site basis in Singapore to help secure and automate our digital infrastructure.
Key outcomes
- Maintain and optimize CI/CD pipelines for our microservices and mobile applications using tools like GitHub Actions, GitLab CI, Terraform, and Helm.
- Automate the provisioning and patching of AWS environments while enforcing strict security policies and least-privilege access.
- Monitor system health and lead incident response efforts, including conducting post-mortems and refining our operational playbooks.
- Manage our ISO 27001-certified Information Security Management System by maintaining documentation and tracking corrective actions.
- Review and update internal security policies, such as those governing cryptography, mobile device management, and third-party risk.
- Conduct regular risk assessments and internal audits to ensure we remain prepared for external ISO surveillance.
- Deliver security awareness training to the team and present monthly performance metrics to our leadership.
Requirements
- Practical experience with core AWS services such as EC2, VPC, IAM, S3, and RDS.
- Proficiency in infrastructure-as-code practices using Terraform or CloudFormation.
- Strong foundation in Linux systems and the ability to script effectively in Bash or Python.
- Working knowledge of ISO 27001 controls and a solid understanding of data privacy principles like PDPA and GDPR.
- Excellent communication skills, with a focus on producing clear audit findings, policy documentation, and incident reports.
- Fluency in English.
Preferred qualifications
- A degree in Computer Science, Information Security, Engineering, or a related technical field.
- Up to three years of experience in DevOps, system administration, or security roles, including relevant internships or fresh graduate experience.
- An AWS Cloud Practitioner certification, or the willingness to obtain one within six months of your start date.
- Experience working with Docker and Kubernetes.
- Familiarity with SIEM tools such as Wazuh, ELK, or Splunk.
- Knowledge of vulnerability management practices, including container scanning or tools like Nessus.
- Professional certifications such as CompTIA Security+, AWS Security Specialty, or ISO 27001 Lead Implementer/Auditor.
Compensation
We offer competitive compensation packages that include performance-based bonuses. Our benefits include comprehensive health insurance covering both in-patient and out-patient services, the opportunity to work in a fast-paced start-up environment, and dual-track mentorship in both DevOps and Information Security.
How to apply
If you are passionate about building secure healthcare solutions and want to make a meaningful impact, we invite you to apply. Please submit your application to join our team as we continue to innovate in the digital health space.

WhiteCoat
5 views
Markets



