We’re currently looking for a DevSecOps Engineer to join our fast-paced growing team. As part of the engineering team, you will be responsible for maintaining cloud-security solutions used by thousands of enterprise companies. Our flagship product, HENNGE One, provides functionalities ranging from access control, email filtering, online storage, and email archiving. We focus on implementing state-of-the-art security functionalities, ensuring SLA 99.9% in distributed fault-tolerant deployment, and providing the best user experience to our customers.
Responsibilities
- Implement tools and establish processes and to improve security of HENNGE services
- Triage and investigate potential security threats and vulnerabilities
- Collaborate with service teams to implement security measures and fix vulnerabilities
Requirements
- At least 2-3 years of experience in cloud infrastructure and/or cloud security, specifically in AWS
- Experience in building and maintaining cloud infrastructure, specifically AWS
- Experience in building and maintaining web application CI/CD pipeline
- Experience in establishing procedures/runbooks for cloud operations
- Experience in troubleshooting service issue in production
- Experience in Infrastructure as Code tools (e.g. Terraform)
- Experience in building tools or scripts for DevSecOps operations
- Knowledge of web application security (e.g. OWASP)
- Knowledge of AWS security best practices
- Interest in cybersecurity community activities
- Meet at least three of the following criteria:
- Degree in Computer Science or other related technical fields
- Experience in building and maintaining cloud infrastructure, specifically AWS
- Experience in building and maintaining web application CI/CD pipeline
- Experience in Infrastructure as Code tools (e.g. Terraform)
- Knowledge/experience in troubleshooting service or security issues in production environment
- Knowledge of DevOps tools and practices (CI/CD, Infrastructure as Code)
- Knowledge/experience in web application security
Nice to haves
While not specifically required, tell us if you have any of the following.
- Experience of integrating security tests for web applications (SAST/DAST) in CI/CD pipeline
- Experience of responding to, triaging and resolving security-related incidents on production
- Experience of adopting AWS security services in production environment (e.g. Security Hub, Inspector, CloudTrail, AWS WAF)
- Experience of managing or participating in Bug Bounty program
Compensation
¥7,000,000 ~ ¥9,000,000 annually.
Our salary range is inclusive of English Allowance & Physical Communication Bonus - please check the details below, with the final amount determined based on your experience and skills.
Please refer to our Company Introduction Deck for an explanation of our Assessment System and the Belt System, which we use to determine the candidate’s salary range.
Benefits
- English Allowance and Advanced Language Expert Allowance: JPY 10,000 ~ JPY 130,000 per month, paid alongside base salary, if the employee fulfills the requirements.
- Physical Communication Bonus: JPY 4,000 per day, applicable from October 2025 onwards, for coming to the office and interacting with other employees, paid out as bonus according to the number of days.
Details will be provided at the offer meeting.
