SDET I (Security)
Halodoc is looking for a Cybersecurity Engineer to strengthen our defensive security operations. This role focuses on security monitoring, Google Workspace security administration, and IAM automation, covering user lifecycle management, SSO integration, and access review enforcement to enhance security posture and operational efficiency.
We're seeking a security enthusiast eager to deepen their expertise—leveraging automation to reduce recurring security gaps, integrating emerging technologies for detection and response, and strengthening blue team operations. If you thrive on tackling security challenges, working with cutting-edge tools, and collaborating to enhance defense strategies, this role is for you.
About This Role:
Halodoc is looking for a Cybersecurity Engineer to strengthen our defensive security operations. This role focuses on security monitoring, Google Workspace security administration, and IAM automation, covering user lifecycle management, SSO integration, and access review enforcement to enhance security posture and operational efficiency.
We're seeking a security enthusiast eager to deepen their expertise—leveraging automation to reduce recurring security gaps, integrating emerging technologies for detection and response, and strengthening blue team operations. If you thrive on tackling security challenges, working with cutting-edge tools, and collaborating to enhance defense strategies, this role is for you.
Job Title: SDET I (Cybersecurity)To apply for this position, you must have:
- 1-3 years of experience in cybersecurity, security operations, IAM, or blue team activities.
- Hands-on experience with SIEM, EDR, and DLP solutions.
- Knowledge of Google Workspace security controls, including DLP policies, access management, security investigation tools, and advanced phishing protection.
- Familiarity with IAM automation using Python, Terraform, or Google Apps Script.
- Solid coding skills and a passion for security engineering.
- Excellent written and verbal communication skills, with the ability to articulate complex security concepts clearly.
- A proactive mindset and self-driven approach to problem-solving in a remote environment.
- Monitor and analyze security alerts from SIEM, AWS security tools, EDR, DLP, and Email Security solutions.
- Investigate user security issues by analyzing logs and product behavior, proposing improvements for faster detection and containment of similar threats.
- Enhance detection rules, fine-tune alerting mechanisms, and automate security workflows to improve efficiency.
- Utilize threat intelligence and real-time CVE tracking to enhance detection capabilities, mitigate emerging threats, and refine security policies.
- Manage security settings, access controls, and DLP policies in Google Workspace.
- Automate IAM workflows, including user lifecycle management, SSO app integration, and access review enforcement.
- Knowledge of AWS security tools (e.g., Security Hub, GuardDuty, WAF, IAM Analyzer).
- Experience with Email Security solutions and Security Threat Intelligence Platforms.
- Security certifications like Security+, GSOC, AWS or GCP cloud security certification is a plus.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
