Lead Security Engineer : GoFin


Applications have closed
Gojek logo
Gojek is a Super App. It’s one app for ordering food, commuting, digital payments, shopping, hyper-local delivery, and over a dozen services. It is Indonesia’s first and fastest growing decacorn building an on-demand empire.
Find more jobs like this

About the Role

Fasten your helmet and climb on board if you’re ready to be our next Lead Security Engineer. In this role, you will be the go-to expert in one or more information security disciplines with the expertise and wide understanding of security architecture, processes, alignment to stakeholder teams, and accountability for effective measurement of security metrics. You will be leading security projects and initiatives and form the core of GoFin line of defense. We, at GoFin, believe that Security is EVERYONE's responsibility and you will be holding the reigns to promote and lead "Security by Design".The cherry on top: you’ll get to be a part of a team that works to create a real impact on the lives of millions in Southeast Asia.

What You Will Do

  • Participate in the development security project, process, or initiative within your technical focus area (i.e. cloud security, identity access management, vulnerability management, penetration testing)Design, develop, and maintain security features and/or process changes
  • Scope activities from functional security assignments from manager and collaborating security teams
  • Improve security operations by enhancing use cases, processes, and/or code structure
  • Implement medium complexity security tasks for projects and delivers concise and clear deliverables
  • Contribute to automation of repeated manual tasks to improve team productivity
  • Collaborate in security reviews that follow the standards and practices of information security best practices recognized by your team members

What You Will Need ✅

  • At least 8 years of relevant industry experience
  • Strong acumen and understanding of tech architecture for cloud-native and microservices based, web and mobile applications. Bonus points for GCP experience
  • Ability to drive security automation and DevSecOps within engineering life cycle, as well as vulnerability/bug remediation through calibration and filtering false positives
  • Experience in using manual and automated scanners like Nessus, Nexpose, Qualysguard, nmap, OpenVAS, Nexpose, and PT kits like Kali Linux, Metasploit
  • In-depth understanding of at least 3 security domains: application, network, identity access management, vulnerability management, incident response, encryption, remote access
  • Mandatory certification CISSP / OSCP / CEH
  • Desirable certifications: CSSLP, LPT, SANS-GPEN, SABSA
About the Team 

GoFin is part of GoTo’s financial services arm. Our team works to provide responsible and sustainable financial services to our users. We operate with the fundamental belief that financial inclusion can unlock the doors to a better quality life, both in the present as well as in the long term.
Though we’re spread across Indonesia, India and Singapore, we all enjoy collaborative iterative development with fast feedback cycles and prefer making pragmatic technical decisions despite working under a myriad of business and regulatory constraints. We work in a highly-supportive environment where we never hesitate to help each other out, unblock any and all barriers, and have fun along the way. We love to take advantage of the fact that our members come from such a wide variety of cultures and backgrounds, and take time to learn from and about one another on our informal Zoom hangouts.

About Us
Gojek is a Super App. It’s one app for ordering food, commuting, digital payments, shopping, hyper-local delivery, and dozen other products. It is Indonesia’s first and only decacorn. It's also the only Southeast Asian startup to be part of Fortune's list of 'Companies That Changed The World.'
Our Mission: To create and scale positive socio-economic impact for our customers, driver-partners, business and MSMEs.
As of 2018, Gojek processed more than $9 billion annualised gross transaction value across all markets where it operates - in Singapore, Thailand, Vietnam and Indonesia. We have the largest food delivery product in Asia, (outside of China), and the largest payments wallet in Southeast Asia.
Our investors include Google, Facebook, PayPal, Sequoia Capital, Tencent Holdings among others.
Gojek is committed to building a diverse and inclusive workplace and is an equal opportunity employer. We do not discriminate on the basis of race, religion, national origin, gender, gender identity, sexual orientation, disability, age, education status, or any other legally protected status.
Job region(s): Asia/Pacific
Job stats:  10  1  0

Explore more Information Security career opportunities