Blue Team Security Engineer (Medior)
PT Bukalapak.com, Indonesia

The Security Engineering Blue Team provides the threat-watch, threat-detection and threat-response requirements of the business that span across infrastructure, engineering, enterprise and the Bukalapak marketplaces.

As a security-blue-team member you will have technical knowledge and know-how in more than one cyber-security specialisation area such as application-security, network-security, infrastructure-security, cloud-security, threat-management, incident-response and general cyber-crime.

The successful candidate will be a team-player that can see-through the confusion of conflicting information and inconsistent data in order to manage threats.

• Provide threat-watch, threat-detection, threat-response and incident-response capabilities to the business.
• Manage and monitor logging and SIEM systems with appropriate alert triage and escalation
• Respond to threats in real-time and manage the response mechanisms through their lifecycle.
• Improve and maintain incident playbooks including the team dry-runs and practice sessions.
• Work with the Security Red Team to conduct regular training exercises and sessions with the business with audience relevant content.
• Engage with staff to communicate current and relevant cyber-security issues affecting the business.
• Assist business units in achieving various security framework compliance requirements.

Requirements

• 3+ years of professional experience in security engineering
• 2+ years of experience on a security team.
• In-depth and up-to-date understanding of technical threats and the techniques to defend against them - including tactics, techniques, and procedures.

• Previous experience in handling or managing incidents and an understanding of incident workflow and data management.
• Understanding of SIEM technologies and an ability to write appropriate filters and signatures.
• Understanding of risk-assessments and their relationship to governance and compliance frameworks
• Ability to identify, understand and communicate the threat-scenarios associated with vulnerabilities and weaknesses.
• Proficiency in more than one scripting language
• Excellent verbal and written communication skills
• Bachelor’s Degree in Computer Science or a related field, or an equivalent in relevant work experience.
• Experience with cyber-crime forensics and law-enforcement reporting is a plus.
• CyberSecurity industry certifications such as CHFI or CEH are a plus.
• Experience with cyber-security in online-marketplace settings is a plus.

Benefits

• We put having great work life balance on a sacred pedestal.
• Flexible work hours.
• Generous medical, dental, vision, and maternity insurance for you and your family.
• Free lunch every single day.
• Fun and humble culture that cares about your personal growth.
• Tons of employee-organized interest clubs or expertise guilds for you to join.
• Equal opportunity employer with family-friendly policies and supports.
• Laptop.
• Sixteen (16) days of paid leave per year, annual company outing.

Job Rewards and Benefits