Security Engineer - Cyber Defense (SDE 3)

Jakarta
Permanent
Full-time

1 month ago

Join our dynamic team in Jakarta as a Security Engineer (Cyber Defense), where you'll play a pivotal role in shaping and implementing robust cyber defenses for Kredivo Group. Our cyber defense team runs programs related to Endpoint security, WAF, Network security & monitoring, Data Leakage Prevention (DLP), Threat Intel, Threat Detection and vulnerability & patch management. As part of Kredivo's Group cyber defense Security team, you will report to the Cyber Defense Lead & will work closely with the Kredivo IT team.Responsibilities:

Proactively monitor & respond to Endpoint Detection and Response (EDR) alerts.
Assist in implementing vulnerability and patch management processes to ensure a secure endpoint environment.
Implement and enforce CIS hardening standards for laptops, desktops, and network appliances.

Contribute to implementing and maintaining security controls in network firewalls, IDS, and IPS.
Participate in security incident response activities and conduct thorough investigations.

Configure and manage Cloudflare security features including WAF, DDoS protection, bot management, and SSL/TLS settings.
Monitor Cloudflare dashboards for security events and performance issues, and respond to incidents effectively.
Implement and maintain Cloudflare rulesets to protect web applications against emerging threats.
Collaborate with the Threat Detection team to fin -tune existing security detections and develop new detection rules.
Use our threat intelligence database and analysis to identify emerging threats and integrate findings into incident response processes to enhance detection, containment, and remediation efforts.”

Qualifications & technical skills required:

A bachelor's degree (preferably focus on IT but not mandatory)
At least 4-6 years in Information Security in any two or multiple areas, such as endpoint security, data leakage prevention, vulnerability & patch management, network security, SOC or Cloudflare security administration.
Experience configuring and managing Cloudflare features, including WAF, CDN, SSL/TLS, and security rulesets.
Good to have an experience with a scripting language (e.g. Python, Bash, or similar).
Good knowledge of modern adversary tactics, techniques, and procedures.
Certifications such as CompTIA Security+, CCNA/P, ISC2 or ISACA related.
A good understanding of security principles and best practices and a good background in managing EDR, DLP, WAF, vulnerability, patch management, and CDN security tools.
Demonstrated experience working with IT and security teams and previous experience in industries such as Fintech or Financial Services is a plus.

Behavioral & soft skills required:

Self-starter with a proactive attitude and proven ability to work independently with minimal supervision.
Ownership mindset, demonstrating high self-motivation in leading security initiatives and projects.
Continuous learner with a strong appetite for experimentation and interest in automating security processes.
Excellent analytical skills for assessing and solving complex security issues.
Clear and concise communicator adept at conveying security concepts to technical and non-technical stakeholders.
Proficient in creating comprehensive security reports and documentation for various audiences.
Collaborative team player with proven effectiveness in cross-functional teamwork, sharing knowledge to enhance team capabilities.
Good organizational skills, capable of maintaining detailed documentation for security processes and incidents.

#LI-RR1

Kredivo Group

Apply Now