Security Engineer - Cyber Defense (SDE 3)

Join our dynamic team in Jakarta as a Security Engineer (Cyber Defense), where you'll play a pivotal role in shaping and implementing robust cyber defenses for Kredivo Group. Our cyber defense team runs programs related to Endpoint security, WAF, Network security & monitoring, Data Leakage Prevention (DLP), Threat Intel, Threat Detection and vulnerability & patch management. As part of Kredivo’s Group cyber defense Security team, you will report to the Cyber Defense Lead & will work closely with the Kredivo IT team.

• Proactively monitor & respond to Endpoint Detection and Response (EDR) alerts.
• Assist in implementing vulnerability and patch management processes to ensure a secure endpoint environment.
• Implement and enforce CIS hardening standards for laptops, desktops, and network appliances.

• Contribute to implementing and maintaining security controls in network firewalls, IDS, and IPS.
• Participate in security incident response activities and conduct thorough investigations.

• Configure and manage Cloudflare security features including WAF, DDoS protection, bot management, and SSL/TLS settings.
• Monitor Cloudflare dashboards for security events and performance issues, and respond to incidents effectively.
• Implement and maintain Cloudflare rulesets to protect web applications against emerging threats.
• Collaborate with the Threat Detection team to fin -tune existing security detections and develop new detection rules.
• Use our threat intelligence database and analysis to identify emerging threats and integrate findings into incident response processes to enhance detection, containment, and remediation efforts.”
  
  

• A bachelor's degree (preferably focus on IT but not mandatory)
• At least 4-6 years in Information Security in any two or multiple areas, such as endpoint security, data leakage prevention, vulnerability & patch management, network security, SOC or Cloudflare security administration.
• Experience configuring and managing Cloudflare features, including WAF, CDN, SSL/TLS, and security rulesets.
• Good to have an experience with a scripting language (e.g. Python, Bash, or similar).
• Good knowledge of modern adversary tactics, techniques, and procedures.
• Certifications such as CompTIA Security+, CCNA/P, ISC2 or ISACA related.
• A good understanding of security principles and best practices and a good background in managing EDR, DLP, WAF, vulnerability, patch management, and CDN security tools.
• Demonstrated experience working with IT and security teams and previous experience in industries such as Fintech or Financial Services is a plus.
  
  

• Self-starter with a proactive attitude and proven ability to work independently with minimal supervision.
• Ownership mindset, demonstrating high self-motivation in leading security initiatives and projects.
• Continuous learner with a strong appetite for experimentation and interest in automating security processes.
• Excellent analytical skills for assessing and solving complex security issues.
• Clear and concise communicator adept at conveying security concepts to technical and non-technical stakeholders.
• Proficient in creating comprehensive security reports and documentation for various audiences.
• Collaborative team player with proven effectiveness in cross-functional teamwork, sharing knowledge to enhance team capabilities.
• Good organizational skills, capable of maintaining detailed documentation for security processes and incidents.
  

#LI-RR1