Product Security Engineer-GoTo Financial
Jakarta
Applications have closed
Gojek
Gojek is Southeast Asia’s leading on-demand platform and a pioneer of the multi-service ecosystem model, providing access to a wide range of services including transportation, food delivery, logistics and more.If you’re looking to be a part of a dynamic, highly-analytical team and an opportunity to dive deep into projects surrounding Product Security, look no further. As our Product Security Engineer for GoTo Financial, you’ll take the wheel in building and maintaining our product security program and. Along with conducting product security, you will be in charge of ensuring security best practices implementation within GoTo Financial's products and infrastructure. Working closely with data and engineering, you will get to provide a secure platform for our merchants, partners, and consumers. The cherry on top: you’ll get to be a part of a team that works to provide the best protection by having a high standard of information security!
What You Will Do
- Participate in the development of a small to medium complexity security project, process, or initiative within their technical focus area (cloud security, identity access management, vulnerability management, penetration testing, automation, test/abuse case research, QA)
- Work with product security teams to review their design/architecture, perform risk assessments, and provide suitable control recommendations as appropriate
- Build, test, document, and roll out proactive security controls organization-wide
- Build reports/dashboards around to capture and present the progress on OKRs and KPIs to stakeholders
- Identify additional areas of opportunity and means for knowledge sharing practices across teams
- Codify the learnings into reusable knowledge snippets/artifacts besides curating the same for continual consumption
What You Will Need
- Bachelor’s Degree in Information Technology, Computer Science, Computer Engineering, Information Systems, or relevant technical field experience in security domain
- Knowledge of different layers of security such as Network Security, Application Security, Data Security
- Hands-on experience or penetration testing mobile applications, websites, or networks.
- Contribution to bug bounty programs, hacktivist fests, capture the flag challenges. Open source and github profile would be a plus
- Fluent in English to work with international team
- Proficient in at least in one of the following languages: Python, Golang, Java. Python is preferred
We are a small team based in Jakarta. The great thing about having a small team is that we've all naturally grown very close, both professionally and personally, and really rely on each other to get the job done. We use the time to share knowledge, update each other on our lives, sometimes work on a joint side project for research and learning, or simply play online games together!
About Us
Gojek is a Super App. It’s one app for ordering food, commuting, digital payments, shopping, hyper-local delivery, and dozen other products. It is Indonesia’s first and only decacorn. It's also the only Southeast Asian startup to be part of Fortune's list of 'Companies That Changed The World.'
Our Mission: To create and scale positive socio-economic impact for our customers, driver-partners, business and MSMEs.
As of 2018, Gojek processed more than $9 billion annualised gross transaction value across all markets where it operates - in Singapore, Thailand, Vietnam and Indonesia. We have the largest food delivery product in Asia, (outside of China), and the largest payments wallet in Southeast Asia.
Our investors include Google, Facebook, PayPal, Sequoia Capital, Tencent Holdings among others.
Gojek is committed to building a diverse and inclusive workplace and is an equal opportunity employer. We do not discriminate on the basis of race, religion, national origin, gender, gender identity, sexual orientation, disability, age, education status, or any other legally protected status.
Tags: Application security Automation Cloud Computer Science GitHub Golang Java KPIs Network security Open Source Pentesting Privacy Product security Python Vulnerability management
Perks/benefits: Career development Flex vacation Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs