Insider Threat Analyst

About the Role
If you’re looking to be a part of a dynamic, highly-analytical team and an opportunity to hone your investigative skills, look no further. As our Insider Threat Analyst for the Insider Threat Program, your mission will be protecting Gojek’s “crown jewels” from being leaked. You’ll monitor, research, assess and analyze alerts from various security tools, review new use cases for insider threat monitoring, and develop effective playbooks to respond to these threats. With a myriad of cutting-edge technology at your disposal, you’ll work close with the Security Operation Centre and the Incident Response team to investigate and respond to potential suspicious insider activity. Your efforts will ensure that Gojek remains a safe, reliable, and secure platform for all our users and GoTroops.

What You Will Do

• Monitor, research, assess, and analyze alerts from various security tools, including SIEM, user behavior analytics tools, Data Loss Prevention (DLP) tools, endpoint inspection, and CASB (this requires demonstrable insider threat experience)
• Recommend and review new use cases for insider threat monitoring
• Participate in developing appropriate playbooks for investigating and responding to insider threats
• Follow pre-defined playbooks to investigate possible security incidents or perform incident response actions, including escalating to other support groups
• Execute daily ad hoc tasks, including monitoring and responding to potential insider threats

What You Will Need

• At least 2 years of experience working within insider threat related fields (e.g. fraud, DLP team)
• A Bachelor's degree or higher (Computer Science or Cyber security preferred) or equivalent work experience
• Excellent knowledge and previous experience with insider threat investigations and DLP
• Ability to read and understand multiple logs from different data sources
• Good communication skill, with the ability to articulate your points clearly to senior stakeholders
• Ability to work equally well within a team and independently
• A detail-oriented and highly-initiative mindset
• Strong analytical and problem solving skills

About the Team
Our Insider Threat team is a small but mighty family of four Insider Threat Analysts based in Jakarta, Indonesia. We run the Insider Threat Program within Gojek that oversees all things related to potential insider threat activities, and work tirelessly to ensure Gojek remains a safe and reliable platform for all who use our products and services. In short, it’s our job to make sure Gojek’s data - our "crown jewels" are secure. For instance, our team recently identified an ex-employee who was leaking valuable data to a competitor. The big question that’s always on our minds is: How can we better detect suspicious insider activities earlier and more effectively? 
We’re a tight-knit group who are bonded by two things: a passion for learning new things, and the “work hard play hard” mentality 🙌. For real - our weekly conversations range from how to analyze certain logs to the latest TV shows we’ve been watching. The nature of our tasks definitely keep us on our toes, so if you’re keen on an exciting and meaningful role, we’d love to have to join our family.

About Us
Gojek is a Super App. It’s one app for ordering food, commuting, digital payments, shopping, hyper-local delivery, and dozen other products. It is Indonesia’s first and only decacorn. It's also the only Southeast Asian startup to be part of Fortune's list of 'Companies That Changed The World.'
Our Mission: To create and scale positive socio-economic impact for our customers, driver-partners, business and MSMEs.
As of 2018, Gojek processed more than $9 billion annualised gross transaction value across all markets where it operates - in Singapore, Thailand, Vietnam and Indonesia. We have the largest food delivery product in Asia, (outside of China), and the largest payments wallet in Southeast Asia.
Our investors include Google, Facebook, PayPal, Sequoia Capital, Tencent Holdings among others.
Gojek is committed to building a diverse and inclusive workplace and is an equal opportunity employer. We do not discriminate on the basis of race, religion, national origin, gender, gender identity, sexual orientation, disability, age, education status, or any other legally protected status.