Information Security Engineer - GoPay

Jakarta

Gojek logo
Gojek
Apply now Apply later

Posted 2 weeks ago

About the Role
The role is expected to conduct security analysis on various products and technology utilized at GoPay. This includes information gathering, researching, conducting analysis and documenting the result of the security analysis. The role is also expected to assist the monitoring of GoPay IT-GRC’s  projects and BAU activities through communication, tracking and documentation.

What You Will Do

  • Design, analyze and review information security framework and controls on infrastructure and systems at GoPayA
  • Identification and management of remediation for identified information security vulnerability
  • Analysis of information security requirements and provide advice on its implementation
  • Development and maintenance of security reports and documentation
  • Participae the operations of the information security management systems at GoPay
  • Monitor information security posture on various infrastructure and systems at GoPay
  • Monitor and keep up with current technology and information security development both internally and externally
  • Participate in the coordination of various information security related projects and BAU activities

What You Will Need

  • Should have at least 4 years of hands on experience as an Information Security Analyst
  • In-depth knowledge and experience in conducting security analysis and development of security documentation and report
  • Experience and knowledge in security vulnerability management and penetration testing activities, as well as mobile application and cloud infrastructure technology and security
  • Experience in managing information security projects
  • In-depth knowledge and experience in information security framework such as ISO 27001 and NIST 800
  • Knowledge and experience in DevOps environment will be an advantage
  • Having professional security related certification, e.g., CEH, CRISC, CISA, LAC 27001, CISM, SANS GIAC, CSX, OSCP would be an advantage
About the Team
GoPay IT-GRC is managing the IT and Information security governance, risk and compliance at GoPay. The role will report to the GoPay ISMS Developer Lead and will be a part of the GoPay IT-GRC and Gojek Information Security Team.
About Us
Gojek is a Super App. It’s one app for ordering food, commuting, digital payments, shopping, hyper-local delivery, and dozen other products. It is Indonesia’s first and only decacorn. It's also the only Southeast Asian startup to be part of Fortune's list of 'Companies That Changed The World.'
Our Mission: To create and scale positive socio-economic impact for our customers, driver-partners, business and MSMEs.
As of 2018, Gojek processed more than $9 billion annualised gross transaction value across all markets where it operates - in Singapore, Thailand, Vietnam and Indonesia. We have the largest food delivery product in Asia, (outside of China), and the largest payments wallet in Southeast Asia.
Our investors include Google, Facebook, PayPal, Sequoia Capital, Tencent Holdings among others.
Gojek is committed to building a diverse and inclusive workplace and is an equal opportunity employer. We do not discriminate on the basis of race, religion, national origin, gender, gender identity, sexual orientation, disability, age, education status, or any other legally protected status.
Job tags: CEH CISA CISM DevOps GIAC Google ISO 27001 NIST OSCP Penetration testing SANS Vulnerability management
Share this job: