Peripamo Technologies Sdn Bhd

About Peripamo Peripamo is a fintech startup building software for Malaysian financial institutions, including banks and fund managers. We operate in a high-trust, high-stakes environment — our clients depend on us to be secure, reliable, and audit-ready at all times. The Role We're hiring a Platform / DevSecOps Engineer to strengthen the infrastructure and security operations behind Peripamo. You'll work closely with the CTO/CISO on the systems that keep our platform running and our enterprise clients confident in us. What You'll Own Infrastructure & Reliability Operate and harden our cloud platform across compute, storage, networking, and managed services. Own CI/CD pipelines, infrastructure-as-code, monitoring, logging, and alerting. Manage backups, restore procedures, and database operations. Be the primary on-call for production. Drive incident response, root-cause analysis, and post-mortems. Security Operations Day-to-day owner of endpoint protection across our Linux and Mac fleet. Run vulnerability management, patch cycles, and configuration hardening. Manage secrets, access controls, and identity across our cloud and SaaS stack. Lead security questionnaire responses and vendor due diligence requests from enterprise clients. Business Continuity & Disaster Recovery Design, document, and run regular BCP and DR exercises. Own runbooks, RTO/RPO targets, and recovery procedures. Build the operational resilience story we present to enterprise clients. Must-Haves 3+ years operating production infrastructure on a major cloud (GCP, AWS, or Azure). Strong Linux fundamentals — comfortable on the terminal and in shell scripts. Hands-on experience with infrastructure-as-code, CI/CD, and containerization. Comfortable owning incident response end-to-end, including writing post-mortems. Experience managing secrets, identity, and access at scale. Solid relational database operational knowledge — backups, restores, performance basics. Nice-to-Haves Has been through at least one SOC 2 or ISO 27001 audit cycle, ideally as a primary contributor. Clear, written communication — comfortable writing for enterprise client audiences. Prior experience in fintech, banking, or another regulated industry. Hands-on experience responding to enterprise vendor security questionnaires. BCP/DR exercise experience in a regulated environment. Certifications: CISSP, CCSP, cloud security specialty, or equivalent. Experience with EDR and MDM tooling. Why Join Us Real ownership. Your decisions shape how Peripamo runs for years. High-leverage work, no busywork. Small team, no bureaucracy, no meetings about meetings. Real career compounding. SOC 2, ISO 27001, enterprise vendor due diligence, and BCP/DR exposure at a fintech is a rare combination of skills that pays dividends for the rest of your career. Competitive compensation including base salary and performance bonus.