The Security Engineering Blue Team provides the threat-watch, threat-detection and threat-response requirements of the business that span across infrastructure, engineering, enterprise and the Bukalapak marketplaces.
As a security-blue-team member you will have technical knowledge and know-how in more than one cyber-security specialisation area such as application-security, network-security, infrastructure-security, cloud-security, threat-management, incident-response and general cyber-crime.
The successful candidate will be a team-player that can see-through the confusion of conflicting information and inconsistent data in order to manage threats.
Responsibilities
- Provide threat-watch, threat-detection, threat-response and incident-response capabilities to the business.
- Manage and monitor logging and SIEM systems with appropriate alert triage and escalation
- Respond to threats in real-time and manage the response mechanisms through their lifecycle.
- Improve and maintain incident playbooks including the team dry-runs and practice sessions.
- Work with the Security Red Team to conduct regular training exercises and sessions with the business with audience relevant content.
- Engage with staff to communicate current and relevant cyber-security issues affecting the business.
- Assist business units in achieving various security framework compliance requirements.
Requirements
- 3+ years of professional experience in security engineering
- 2+ years of experience on a security team.
- In-depth and up-to-date understanding of technical threats and the techniques to defend against them - including tactics, techniques, and procedures.
- Previous experience in handling or managing incidents and an understanding of incident workflow and data management.
- Understanding of SIEM technologies and an ability to write appropriate filters and signatures.
- Understanding of risk-assessments and their relationship to governance and compliance frameworks
- Ability to identify, understand and communicate the threat-scenarios associated with vulnerabilities and weaknesses.
- Proficiency in more than one scripting language
- Excellent verbal and written communication skills
- Bachelor’s Degree in Computer Science or a related field, or an equivalent in relevant work experience.
- Experience with cyber-crime forensics and law-enforcement reporting is a plus.
- CyberSecurity industry certifications such as CHFI or CEH are a plus.
- Experience with cyber-security in online-marketplace settings is a plus.
Benefits
- We put having great work life balance on a sacred pedestal.
- Flexible work hours.
- Generous medical, dental, vision, and maternity insurance for you and your family.
- Free lunch every single day.
- Fun and humble culture that cares about your personal growth.
- Tons of employee-organized interest clubs or expertise guilds for you to join.
- Equal opportunity employer with family-friendly policies and supports.
- Laptop.
- Sixteen (16) days of paid leave per year, annual company outing.