Senior Incident Responder

Bengaluru

Applications have closed

Gojek

Gojek is Southeast Asia’s leading on-demand platform and a pioneer of the multi-service ecosystem model, providing access to a wide range of services including transportation, food delivery, logistics and more.

View company page

About the Role
If you’re looking to be a part of a dynamic, highly-analytical team and an opportunity to dive deep into projects surrounding incident respond, look no further. As our Senior Incident Responder for Information Security team, you’ll take the wheel in investigate cyber security incidents for Gojek. Along with manage cyber security incidents, you will be in charge to develop elegant solutions to complex problems and apply appropriate technologies while following security best practices. The cherry on top: you’ll get to be a part of a team that works to fight cyber security incidents.

What Will You Do

  • Monitoring, identification and response to cyber security incidents
  • Cyber security investigation at the network, endpoint and cloud
  • Host-based and Network packet capture/traffic analysis
  • Security Incident Event Management (SIEM) design, implementation, use case development and finetuning to detect security incidents and anomalies
  • Conduct research and analysis on local and worldwide cyber threat streams against Gojek
  • Build relationships with stakeholders and leadership across the organization to influence change and drive consistency with Security Operations (SecOps) standards
  • Collaborate and provide oversight and guidance for periodic security assessments to ensure compliance with corporate security policies and alignment to best practices
  • Support operational security remediation activities resulting from security assessments, penetration tests, red team exercises

What Will You Need

  • 8+ years of experience in information security with at least 2+ years in cyber incident response and/or digital investigations
  • Successfully led or contributed to investigations as an IC or team member
  • Effectively manage the different business and IT stakeholders affected by a major incident, providing business risk assessments of cyber threats and technical vulnerabilities
  • Experienced in conducting investigations within cloud, SaaS and logging platforms 
  • Experienced in conducting investigations using scripts (python, powershell, etc) and automation
  • Working knowledge in operating SIEM, SOAR and CTI Solutions, Host-based Security Investigation, Application Security, Web Services
  • Current understanding of IPS/IDS, EDR solutions, Network Monitoring solutions, NetFlow collector and analyzer, Network traffic/packet analysis
  • Working knowledge of malware dynamic analysis. Malware reverse engineering or static analysis is a bonus
  • Certified in one or more of the following: CISSP, CISA, CCNA, CISM, SANS GIAC
About the Team
Gojek Information Security function is responsible for providing a secure and trustworthy ecosystem, delivering a world-class product security capability while ensuring compliance and, last but not least, making Gojek the safest cyber workplace for our GoTroops.
About Us
Gojek is a Super App. It’s one app for ordering food, commuting, digital payments, shopping, hyper-local delivery, and dozen other products. It is Indonesia’s first and only decacorn. It's also the only Southeast Asian startup to be part of Fortune's list of 'Companies That Changed The World.'
Our Mission: To create and scale positive socio-economic impact for our customers, driver-partners, business and MSMEs.
As of 2021, Gojek processed more than $9 billion annualised gross transaction value across all markets where it operates - in Singapore, Thailand, Vietnam and Indonesia. We have the largest food delivery product in Asia, (outside of China), and the largest payments wallet in Southeast Asia.
Our investors include Google, Facebook, PayPal, Sequoia Capital, Tencent Holdings among others.
Gojek is committed to building a diverse and inclusive workplace and is an equal opportunity employer. We do not discriminate on the basis of race, religion, national origin, gender, gender identity, sexual orientation, disability, age, education status, or any other legally protected status.

Tags: Application security Automation CISA CISM CISSP Cloud Compliance EDR GIAC IDS Incident response IPS Malware Monitoring PowerShell Product security Python Red team Reverse engineering SaaS SANS SecOps Security assessment SIEM SOAR Vulnerabilities

Perks/benefits: Startup environment Team events

Region: Asia/Pacific
Country: India
Job stats:  11  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.