Head of Incident Response
Singapore
Applications have closed
Gojek
Gojek is Southeast Asia’s leading on-demand platform and a pioneer of the multi-service ecosystem model, providing access to a wide range of services including transportation, food delivery, logistics and more.As part of our Information security function we need a leader that can fully own, manage, respond and investigate cyber security incidents. As the Head of Incident Response, this person will lead a team of highly technical responders and will need to have vision to ensure continuous improvement and maintain a high performing team. The scope includes incident management, cloud security advisory, digital forensic investigation in combination with root-cause analysis of security flaws and vulnerabilities. The role is also expected to develop elegant solutions to complex problems and apply appropriate technologies while following security engineering best practices.
What Will You Do
- Be the leader for CSIRT - manage, empower, nurture, support and guide the team and bring out the best in them
- Effectively manage and lead cyber incidents (end to end) according to the incident response process and playbooks
- Manage the various stakeholders (business and technical) during an incident with timely reporting and updates. Cyber security incident response and investigation on network, endpoint and cloud infrastructure
- Responsible for managing the work deliverables of their team and can set goals and priorities throughout the year
- Provides strategic inputs into budget management and planning and other business activities
- Provides coaching, feedback, developmental opportunities, etc. to direct/indirect reports within a broader team
- Build relationships with stakeholders and leadership across the organization to influence change and drive consistency with Security Operations (SecOps) standards
- Collaborate and provide oversight and guidance for periodic security assessments and improvements
- Support operational security remediation activities as part of lessons learned resulting from post-mortem investigation of incidents. Conduct research and analysis on local and worldwide cyber threats which might impact the company.
What Will You Need
- Successfully lead major incidents and investigations which involve various different stakeholders
- Seasoned leader who is able to remotely manage a team of responders and investigators
- Experience in managing senior stakeholders (including C-suites and Board of Directors)
- Ability to derive and translate technical jargon to business impact Experienced in conducting investigations within cloud and SaaS platforms (eg AWS, GCP, O365, GSuite, etc)Experienced in SOAR and other automation
- Experienced in various SIEM
- Experienced in managing regional teams of diverse cultures
- Experienced in working for startup organizations and startup culture
- Experienced in relevant industry ie eCommerce, Logistics, FinTech, Banking
- Experienced in driving change (organizational, cultural and process) needed to respond to current and emerging threats
- Certified in one or more of the following is a plus: CISSP, CISA, CCNA, CISM, SANS GIAC
Gojek Information Security function is responsible for providing a secure and trustworthy ecosystem, delivering a world-class security capability while ensuring compliance and, last but not least, making Gojek the safest and trusted platform for our customers as well as the safest workplace for our GoTroops.
About Us
Gojek is a Super App. It’s one app for ordering food, commuting, digital payments, shopping, hyper-local delivery, and dozen other products. It is Indonesia’s first and only decacorn. It's also the only Southeast Asian startup to be part of Fortune's list of 'Companies That Changed The World.'
Our Mission: To create and scale positive socio-economic impact for our customers, driver-partners, business and MSMEs.
As of 2021, Gojek processed more than $9 billion annualised gross transaction value across all markets where it operates - in Singapore, Thailand, Vietnam and Indonesia. We have the largest food delivery product in Asia, (outside of China), and the largest payments wallet in Southeast Asia.
Our investors include Google, Facebook, PayPal, Sequoia Capital, Tencent Holdings among others.
Gojek is committed to building a diverse and inclusive workplace and is an equal opportunity employer. We do not discriminate on the basis of race, religion, national origin, gender, gender identity, sexual orientation, disability, age, education status, or any other legally protected status.
Tags: Automation AWS Banking C CISA CISM CISSP Cloud Compliance CSIRT E-commerce Ecommerce FinTech GCP GIAC Incident response SaaS SANS SecOps Security assessment SIEM SOAR Vulnerabilities
Perks/benefits: Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Engineer jobs
- Open Senior Cyber Security Specialist jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs