DevSecOps

PT Telkomsel Ekosistem Digital Jakarta Raya, Indonesia
Apply Now

About Us

INDICO is Telkomsel's subsidiary focusing on creating values in developing Indonesia's digital ecosystem. As a digital ecosystem enabler, INDICO plays a strategic role both as a platform company and a holding company.  As a platform company, INDICO strives to create non-telecom value by enhancing user experience of Telkomsel and INDICO Group services. Currently, INDICO is building three business platforms through a B2B2C model: INDICO Commerce (digital product transaction solution), INDICO Engage (marketing solution), and INDICO DataHub (data solution).    As a holding company, INDICO nurtures vertical businesses across sectors: Fita (health tech), Kuncie (edtech), Majamojo (game publishing), and Digital Food Ecosystem (agritech). By harnessing telecom's commercial and technological assets, INDICO aspires to create a new economy, empowering Indonesians and enabling businesses across sectors to advance Indonesia's digital economy.   INDICO believe we can reach beyond to empower Indonesians and enable businesses through our strong core values of EPIC WAY (Excellence, Positivity, Impactful Collaboration, Customer First, Walk the Talk, Accountability, Yes-if Mindset).

Key Responsibilities: Infrastructure & Cloud Management  • Collaborate in designing, implementing, and maintaining secure, scalable, and cost-efficient AWS infrastructure using services such as EC2, S3, Lambda, RDS, DynamoDB, and VPC 

• Develop and maintain Infrastructure as Code (IaC) using Terraform and Terragrunt for consistent and repeatable deployments  • Assist in monitoring and optimizing AWS resource usage to ensure cost efficiency while maintaining performance standards  • Support implementation of AWS security best practices, including IAM policies, Secrets Manager, Security Hub, WAF, and GuardDuty, while learning compliance requirements with industry standards 

DevSecOps & CI/CD Pipeline Management  • Build and maintain GitLab CI/CD pipelines for automated testing, building, and deployment processes  • Integrate security controls into the DevOps lifecycle by working with tools like SonarQube, Checkmarx, or Snyk for static application security testing (SAST) and dependency scanning  • Learn and implement DAST (Dynamic Application Security Testing) tools and processes to identify runtime vulnerabilities  • Use SonarQube to support coding standards enforcement, identify vulnerabilities, and contribute to high-quality code practices across development teams 

 Container Orchestration & Management • Manage containerized applications using Docker and work with orchestration platforms including Kubernetes (EKS), Amazon ECS, or Fargate  • Learn and apply container security best practices and vulnerability scanning for Docker images  • Contribute to designing and maintaining scalable microservices architectures using container technologies 

Monitoring & Observability  • Set up and manage monitoring tools such as AWS CloudWatch, Prometheus, Grafana, Opentelemetry, and ELK Stack for insights into system performance, availability, and security  • Create dashboards and alerting mechanisms for proactive incident response  • Support logging strategies and centralized log management for security and compliance requirements 

Collaboration & Continuous Learning  • Contribute to disaster recovery (DR) planning and backup strategies to ensure business continuity and data integrity 

• Work closely with development, operations, and security teams to ensure seamless integration and delivery of solutions 

• Continuously learn and stay updated with DevSecOps best practices and emerging technologies

Apply Now Back to Search