Taro Logo
Join Taro Premium

Mid Security Engineer (Offensive)

tiket.com

Travel technology company serving 50+ million users to craft their adventures
Jakarta, Indonesia
Security
Mid-Level Software Engineer
Hybrid
3+ years of experience
Travel
This job posting may no longer be active. You may be interested in these related jobs instead:
Software Development Engineer in Test (SDET)
Corelight

SDET position at Corelight focusing on security testing automation and framework development for network detection and response platform.

Security Engineer
Prove

Security Engineer role at Prove focusing on cyber security, vulnerability management, and threat protection with competitive compensation and benefits.

Application Security Engineer
Tempus

Application Security Engineer role at Tempus focusing on implementing security best practices throughout the software development lifecycle for healthcare technology.

Security Engineer
Oracle

Security Engineer position at Oracle focusing on cloud security, penetration testing, and security architecture for distributed systems.

Technical Support Engineer
Magnet Forensics

Technical Support Engineer position at Magnet Forensics providing frontline support for digital forensics software through multiple communication channels.

Description For Mid Security Engineer (Offensive)

tiket.com is a leading travel technology company serving over 50 million users, focused on providing the best travel booking experience for their customers. They are seeking a Mid Security Engineer (Offensive) to join their Technology Infrastructure & Security team in a hybrid work arrangement based in Jakarta.

The role combines both offensive and defensive security responsibilities, requiring a strong background in cybersecurity with at least 3 years of experience. The position involves crucial security operations including incident response, vulnerability management, and implementation of security measures using various tools and technologies.

As a Security Engineer, you'll be responsible for protecting the company's assets and users through various security initiatives, from conducting thorough security analyses to implementing defensive technologies. The role requires both technical expertise in security tools and programming, as well as strong communication skills for stakeholder management.

The ideal candidate will bring a combination of hands-on technical experience with security tools, programming capabilities, and a strong understanding of security frameworks like OWASP and CVSS. Additional certifications such as OSCP, GCIH, or GMON are valued, as is experience with compliance standards like PCI DSS and ISO 27001.

This is an excellent opportunity for a security professional looking to make a significant impact in a large-scale travel technology platform, working with modern security tools and frameworks while protecting millions of users' experiences.

Last updated 3 months ago

Responsibilities For Mid Security Engineer (Offensive)

  • Investigate and respond to security incidents
  • Conduct security log analysis to identify vulnerabilities and threats
  • Perform risk scoring based on OWASP Risk Rating and/or CVSS
  • Utilize and manage security defensive technologies (SIEM, WAF, and Bot Management tools)
  • Implement and maintain security measures
  • Develop and implement security solutions (automation)
  • Conduct regular code reviews
  • Prepare detailed reports on security assessments
  • Deliver presentations to stakeholders on security findings

Requirements For Mid Security Engineer (Offensive)

Python
Go
  • Minimum of 3+ years of experience in cybersecurity (defensive)
  • Experience in programming and security vulnerability management
  • Ability to perform risk scoring using OWASP Risk Rating and/or CVSS
  • Experience with security defensive technologies
  • Strong written and verbal communication skills
  • Experience in security incident response and investigation
  • Experience in managing cloud security perimeter
  • Knowledge of MITRE ATT&CK (preferred)
  • Familiarity with PCI DSS and ISO 27001 compliance (preferred)
  • Relevant certifications such as GCIH or GMON (preferred)
  • Programming experience in golang or python (preferred)
  • Certified Offensive Security Professional (OSCP) (preferred)
Interested in this job?
Taro Footer Icon
Taro Footer Logo
Explore CompaniesAmazonGoogleMetaMicrosoftNetflixApple
Explore Jobs By LevelEntry-Level Software Engineer JobsMid-Level Software Engineer JobsSenior Software Engineer JobsStaff Software Engineer Jobs
Explore TrendingLayoffsPerformance Improvement PlanSystem DesignInterpersonal CommunicationTech Lead
Explore Job InternshipsSoftware Engineering InternshipsGoogle InternshipsMeta InternshipsAmazon InternshipsApple InternshipsTesla InternshipsMicrosoft Internships
ProductH-1B Visa Salary DatabaseBecome An AffiliateGreat DiscussionsPerksTopics
CompanyBlogPrivacy PolicyTerms & ConditionsSupport
Taro iOS appTaro Android app
LinkedIn IconTwitter IconYouTube Icon
Copyright © Taro