Taro Logo
Join Taro Premium

Mid Security Engineer (Offensive)

tiket.com

Travel technology company serving 50+ million users to craft their adventures
Jakarta, Indonesia
Security
Mid-Level Software Engineer
Hybrid
3+ years of experience
Travel
This job posting may no longer be active. You may be interested in these related jobs instead:
Security Engineer II, Stores Application Security
Amazon

Security Engineer II position at Amazon Stores focusing on application security, threat modeling, and secure code review, requiring 3+ years of experience in security engineering and software development.

Software Development Engineer, NextGen Security Automation
Amazon

Mid-level Software Development Engineer position at Amazon focusing on AI/ML-driven security automation, threat detection, and response systems development.

Product Security Engineer
Adobe

Adobe is seeking a Product Security Engineer to join their Vulnerability Operation Center team to analyze security vulnerabilities and work with development teams to strengthen product security.

Product Security Engineer
Adobe

Adobe is seeking a Product Security Engineer to analyze and triage vulnerabilities for Adobe's products and online services.

Software Development Engineer, Authorization Management
Amazon

Software Development Engineer role at Amazon Security focusing on building Access Policy Management systems and implementing fine-grained access control for sensitive data at scale.

Description For Mid Security Engineer (Offensive)

tiket.com is a leading travel technology company serving over 50 million users, focused on providing the best travel booking experience for their customers. They are seeking a Mid Security Engineer (Offensive) to join their Technology Infrastructure & Security team in a hybrid work arrangement based in Jakarta.

The role combines both offensive and defensive security responsibilities, requiring a strong background in cybersecurity with at least 3 years of experience. The position involves crucial security operations including incident response, vulnerability management, and implementation of security measures using various tools and technologies.

As a Security Engineer, you'll be responsible for protecting the company's assets and users through various security initiatives, from conducting thorough security analyses to implementing defensive technologies. The role requires both technical expertise in security tools and programming, as well as strong communication skills for stakeholder management.

The ideal candidate will bring a combination of hands-on technical experience with security tools, programming capabilities, and a strong understanding of security frameworks like OWASP and CVSS. Additional certifications such as OSCP, GCIH, or GMON are valued, as is experience with compliance standards like PCI DSS and ISO 27001.

This is an excellent opportunity for a security professional looking to make a significant impact in a large-scale travel technology platform, working with modern security tools and frameworks while protecting millions of users' experiences.

Last updated 4 months ago

Responsibilities For Mid Security Engineer (Offensive)

  • Investigate and respond to security incidents
  • Conduct security log analysis to identify vulnerabilities and threats
  • Perform risk scoring based on OWASP Risk Rating and/or CVSS
  • Utilize and manage security defensive technologies (SIEM, WAF, and Bot Management tools)
  • Implement and maintain security measures
  • Develop and implement security solutions (automation)
  • Conduct regular code reviews
  • Prepare detailed reports on security assessments
  • Deliver presentations to stakeholders on security findings

Requirements For Mid Security Engineer (Offensive)

Python
Go
  • Minimum of 3+ years of experience in cybersecurity (defensive)
  • Experience in programming and security vulnerability management
  • Ability to perform risk scoring using OWASP Risk Rating and/or CVSS
  • Experience with security defensive technologies
  • Strong written and verbal communication skills
  • Experience in security incident response and investigation
  • Experience in managing cloud security perimeter
  • Knowledge of MITRE ATT&CK (preferred)
  • Familiarity with PCI DSS and ISO 27001 compliance (preferred)
  • Relevant certifications such as GCIH or GMON (preferred)
  • Programming experience in golang or python (preferred)
  • Certified Offensive Security Professional (OSCP) (preferred)
Interested in this job?
Taro Footer Icon
Taro Footer Logo
Explore CompaniesAmazonGoogleMetaMicrosoftNetflixApple
Explore Jobs By LevelEntry-Level Software Engineer JobsMid-Level Software Engineer JobsSenior Software Engineer JobsStaff Software Engineer Jobs
Explore TrendingLayoffsPerformance Improvement PlanSystem DesignInterpersonal CommunicationTech Lead
Explore Interview QuestionsGoogle Interview QuestionsMeta Interview QuestionsAmazon Interview QuestionsApple Interview QuestionsNetflix Interview Questions
ProductH-1B Visa Salary DatabaseBecome An AffiliateGreat DiscussionsPerksTopics
CompanyBlogPrivacy PolicyTerms & ConditionsSupport
Taro iOS appTaro Android app
LinkedIn IconTwitter IconYouTube Icon
Copyright © Taro