Senior Node.js Engineer

Job Description

Title: Senior Node.js Engineer

Company Name: Reliable Business technologies Sdn Bhd

Vacancy: 6

Age: Na

Job Location: Malaysia

Salary: --

Experience:

• 7 to 12 years
• The applicants should have experience in the following business area(s): Banks, Investment/Merchant Banking, Financial Technology (Fintech) Startup

• Bachelor of Computer Application (BCA)
• Bachelor in Engineering (BEngg)
• Masters in Computer Application (MCA)
• Masters in Information Systems Security (MISS)

• 7 to 12 years
• The applicants should have experience in the following business area(s): Banks, Investment/Merchant Banking, Financial Technology (Fintech) Startup

• 7+ years backend development experience, 5+ years in Node.js/TypeScript.
• Expert in identity and access management solutions and standards.
• Proven experience deploying secure workloads in AWS, Azure, or GCP. (nice to have)
• Strong Kubernetes knowledge, including RBAC, secrets, network policies, and ingress controllers. (nice to have)
• In-depth understanding of OAuth 2.0, OIDC, SAML, JWT, and token security.
• Proficient with Terraform or other IaC tools for automated provisioning. (nice to have)
• Strong grasp of Zero Trust and micro segmentation strategies.
• Experience with server less security (AWS Lambda, Azure Functions). (nice to have).
• Skilled in security logging, monitoring, and alerting using cloud-native and SIEM tools. Experience with chaos engineering for resilience and security testing.

Position Overview:

We are looking for a Senior Node.js Engineer specializing in identity, API security, and cloud-native architectures to lead secure system design and deployment. You will architect authentication flows, ensure compliance with enterprise security policies, and guide teams in building resilient, secure microservices in multi-cloud and containerized environments.

Key Responsibilities:

• Lead the architecture and design of secure, scalable Node.js/TypeScript microservices.
• Define API security standards and enforce across the organization.
• Architect and implement OAuth 2.0, OIDC, SAML, WebAuthn flows for complex systems.
• Deploy high-security services in AWS, Azure, or GCP with multi-region support. (nice to have)
• Manage containerized workloads with Kubernetes, including network policies and pod security. (nice to have)
• Implement Zero Trust principles and fine-grained IAM.
• Oversee API gateway configurations (access control, WAF, rate limiting, JWT validation).
• Champion DevSecOps by embedding SAST, DAST, dependency scanning into CI/CD. (nice to have)
• Ensure TLS, mTLS, key rotation, and encryption-at-rest/in-transit are enforced.
• Integrate security monitoring with SIEM platforms (Splunk, ELK, Datadog, Dynatrace).
• Lead incident response for security events and perform root cause analysis.
• Mentor engineers on secure coding, cloud security, and container security.
• Collaborate with compliance teams on PCI-DSS, GDPR, and ISO 27001 adherence.

• Insurance,Provident fund

• Work visa sponsorship including Dependent visa (wife and kids)

• Flight ticket from Bangladesh to Kuala Lumpur

• 1 week accommodation

• Medical Insurance

• EPF/Socso

• Annual and Medical leave