Enterprise Security Engineer

About the Role

The Enterprise Security Engineer plays a crucial role in Amartha. You will be the warrior who will spearhead various Enterprise Security programs to protect Amartha from internal and external threats.

About the team

The Information Security team in Amartha is a group of dynamic, highly-analytical individuals who are highly mindful in driving security and privacy by design within the various aspects of product lifecycle and engineering processes. We are the team who are highly passionate to be the security enabler of Amartha’s systems.

Job Desc/What will you do

1. Develop and maintain the enterprise security architecture strategy, including policies, standards, and guidelines.
2. Design and implement security solutions, ensuring they meet security best practices and compliance requirements.
3. Monitor internal and external systems for security threats and respond to alerts.
4. Collaborate with stakeholders to gather security requirements and help translate them into effective security architectures.
5. Identify business and technical security requirements, design security controls, provide guidance and advice on testing their effectiveness while ensuring the product implemented addresses both business and security needs.
6. Provide expert support, analysis, research, and advice on complex cyber security problems and processes.
7. Partner with risk management to quantify risks and translate complex IS issues into business language.
8. Identify industry and technology trends, opportunities, and security gaps and help convert these into technical requirements.

Minimum Requirements

1. 5+ years of related job experience.
2. Excellent analytical and interpersonal skills.
3. Ability to express technical information clearly at different organizational levels.
4. Experience deploying and managing endpoint security solutions (e.g. management frameworks, EDR tools).
5. Experience with public cloud service providers (e.g. GCP, AWS).
6. Experience with identity and access management frameworks and protocols, including SAML, OAUTH, and SCIM.
7. Experience with e-mail security protocols (e.g. SPF, DKIM, DMARC) and controls.
8. Intermediate or advanced proficiency with a scripting language (e.g. Python, Bash, or similar).
9. Tools familiarity: Google Workspace, Wazuh, Forcepoint, Crowdstrike, SentinelOne, Elastic-Logstash-Kibana Stack, and various enterprise security tools.

At Amartha, we are dedicated to creating a workplace that celebrates diversity, ensures equity, and fosters inclusion. We believe that diverse perspectives—shaped by factors such as gender, age, race, ethnicity, education, culture, and life experiences—drive innovation and growth.

We actively welcome individuals from all backgrounds to join us in building an environment where everyone feels respected, valued, and empowered. Our commitment is to provide equal opportunities and foster a sense of belonging that enables our employees to thrive and make meaningful contributions.