Security Engineering Lead

About the Role
The Security Architecture team is responsible for security products and services used by millions of users every day. The team conducts security design and code reviews on applications (web, mobile) and infrastructures (cloud, on-premise). The team works closely with the Product, Engineering, and Infrastructure teams throughout the Software Development Life Cycle.
As Security Engineering Lead, you will lead security initiatives on critical projects. You are required to review large and complex systems, identify security gaps and vulnerabilities, and propose adequate security controls. You are expected to solve difficult security challenges by balancing security and usability.

What You Will Do

• Perform security design on applications (web, mobile) and infrastructures (cloud, on-premise)
• Perform security code review (manual, automated) on applications and infrastructures
• Ensure applications and infrastructures are secure by design, follow secure design principles, and adopt secure coding practices
• Identify security gaps and vulnerabilities, and propose appropriate controls and remediations
• Propose solutions to wide-ranging security problems
• Raise security awareness among the Product, Engineering, and Infrastructure team by conducting security training, and having regular security discussions
• Bridge communication between the broader Information Security team with the Product, Engineering, and Infrastructure team

What You Will Need

• Bachelor’s degree in Computer Science, or a related field
• Minimum 3 years of experience in Software Engineering, preferably on web and mobile application
• Minimum 3 years of experience in Information Security, preferably in application and cloud security
• Good knowledge of common secure design principles and secure coding practices
• Good knowledge of common adversarial techniques, tactics, and procedures 
• Ability to learn new things quickly and independently
• Ability to communicate effectively, preferably in English

About the Team
Our Security Architecture team is composed of professionals with diverse skill sets in Software Engineering and Information Security, hailing from various regions. The team collaborates with a wide range of stakeholders, including the Product, Engineering, Infrastructure, and Security teams, to deliver impactful projects such as Gojek, GoPay, and Midtrans. We foster a collaborative environment where different perspectives converge to enhance our security posture and drive innovative solutions.
Working with us offers the opportunity to contribute to impactful projects used by millions, including Gojek, GoPay, and Midtrans. You'll be part of a diverse team with a mix of skills in Software Engineering and Information Security, and you'll collaborate with professionals from various nationalities, including Indonesia and India. Our collaborative environment allows you to work closely with a wide range of stakeholders across different departments, fostering innovation and enhancing our security posture.


About GoTo GroupGoTo Group is the largest digital ecosystem in Indonesia with its mission to “Empower Progress’ by offering technological infrastructure and solutions for everyone to access and thrive in the digital economy. The GoTo ecosystem consists of on-demand transportation services, food and grocery delivery, logistics and fulfillment, as well as financial and payment services through the Gojek and GoTo Financial platforms.It is the first platform in Southeast Asia that hosts these crucial cases in a single ecosystem, capturing the majority of Indonesia’s vast consumer household.
About Gojek Gojek is Southeast Asia’s leading on-demand platform and pioneer of the multi-service ecosystem with over 2.5 million driver partners across the regions offering a wide range of services such as transportation, food delivery, logistics and more. With its mission to create impact at scale, Gojek is committed to resolving consumer problems and raising standards of living by connecting consumers to the best providers of goods and services in the market.
About GoTo FinancialGoTo Financial accelerates financial inclusion through its leading financial services and merchants solutions. Its consumer services include GoPay and GoPayLater and serve businesses of all sizes through Midtrans, Moka, GoBiz Plus, GoBiz, and Selly. With its trusted and inclusive ecosystem of products, GoTo Financial is open to new growth opportunities and aims to empower everyone to Make It Happen, Make It Together, Make It Last.
GoTo and its business units, including Gojek and GoToFinancial ("GoTo") only post job opportunities on our official channels on our respective company websites and on LinkedIn. GoTo is not liable for any job postings or job offers that did not originate from us. You should conduct your own due diligence to