Make an impact
of your own.

We are looking for

• Someone with a passion for Information Security Engineer and can-do attitude to work closely with various teams within JULO leading and executing large and complex security projects and initiatives.

Responsibilities

• Review and suggest automation process for Infosec business processes.
• Review and suggest automation process for Infosec engineering processes.
• Perform necessary infosec business processes, such as but not limited to security pentesting, security risk assessment, product security consultation, etc.
• Own the planning and execution of activities in JULO’s Information Security roadmap.
• Improve JULO’s management of data, especially customer PII.
• Lead the analysis, evaluation, implementation, and improvement of security controls both in technical solutions and effective processes when operating applications, cloud and network infrastructures, and tools.
• Provide technical guidance, training, and mentoring to JULOvers working with confidential data, assets, access, and information.
• Keep up with current security vulnerabilities, threats, controls, and technologies and apply them if necessary.

Requirements

• Practical problem solver, highly analytical, great team player, have excellent work ethic, and have strong security ethics.
• Can communicate clearly, timely, and professionally:
• With technical and non-technical users,
• With leadership roles and individual contributors
• In English and Indonesian.
• Expert in multi-tasking, both in planning, executing, and managing projects thoroughly in issue tracking tools.
• Experience in creating, maintaining, and improving automation processes.
• Hands-on experience with various security engineering tools, such as but not limited to WAF, SIEM, RASP, etc.
• Skilled in troubleshooting and securing Linux-based OS and Windows.
• Skilled in managing, troubleshooting, securing these technologies
• API gateways like Kong
• Mobile, backend, and web based application frameworks
• Message brokers
• Monitoring and provisioning tools
• SQL databases and data platform tools
• Cloud computing infrastructure
• Network appliances
• 3 plus years of experience as a Security Engineer with some leadership experience.
• Having completed CISSP, OSCP, CEH, or similar certifications.
• 2-5 years of industry experience as DevOps Engineer, Data Engineer, and IT Specialist or preferably a combination of those 3 roles.
• Having a deep understanding of Access Control principles.