Senior Security Engineer (Red Team Specialist)

Join our dynamic team in Jakarta as a Security Engineer (Cyber Defense), where you’ll play a pivotal role in shaping and implementing robust cyber defenses for Kredivo Group. Our cyber defense team runs programs related to Endpoint security, WAF, Network security & monitoring, Data Leakage Prevention (DLP), Threat Intel, Threat Detection and vulnerability & patch management. As part of Kredivo’s Group cyber defense Security team, you will report to the Cyber Defense Lead & will work closely with the Kredivo IT team.

Responsibilities:

• Proactively monitor & respond to Endpoint Detection and Response (EDR) alerts.
• Assist in implementing vulnerability and patch management processes to ensure a secure endpoint environment.
• Implement and enforce CIS hardening standards for laptops, desktops, and network appliances.
• Contribute to implementing and maintaining security controls in network firewalls, IDS, and IPS.
• Participate in security incident response activities and conduct thorough investigations.
• Configure and manage Cloudflare security features including WAF, DDoS protection, bot management, and SSL/TLS settings.
• Monitor Cloudflare dashboards for security events and performance issues, and respond to incidents effectively.
• Implement and maintain Cloudflare rulesets to protect web applications against emerging threats.
• Collaborate with the Threat Detection team to fine‑tune existing security detections and develop new detection rules.
• Use our threat intelligence database and analysis to identify emerging threats and integrate findings into incident response processes to enhance detection, containment, and remediation efforts.

Qualifications & technical skills required:

• A bachelor's degree (preferably focus on IT but not mandatory)
• At least 4-6 years in Information Security in any two or multiple areas, such as endpoint security, data leakage prevention, vulnerability & patch management, network security, SOC or Cloudflare security administration.
• Experience configuring and managing Cloudflare features, including WAF, CDN, SSL/TLS, and security rulesets.
• Good to have an experience with a scripting language (e.g. Python, Bash, or similar).
• Good knowledge of modern adversary tactics, techniques, and procedures.
• Certifications such as CompTIA Security+, CCNA/P, ISC2 or ISACA related.
• A good understanding of security principles and best practices and a good background in managing EDR, DLP, WAF, vulnerability, patch management, and CDN security tools.
• Demonstrated experience working with IT and security teams and previous experience in industries such as Fintech or Financial Services is a plus.
• Self‑starter with a proactive attitude and proven ability to work independently with minimal supervision.
• Ownership mindset, demonstrating high self‑motivation in leading security initiatives and projects.
• Continuous learner with a strong appetite for experimentation and interest in automating security processes.
• Excellent analytical skills for assessing and solving complex security issues.
• Clear and concise communicator adept at conveying security concepts to technical and non‑technical stakeholders.
• Proficient in creating comprehensive security reports and documentation for various audiences.
• Collaborative team player with proven effectiveness in cross‑functional teamwork, sharing knowledge to enhance team capabilities.
• Good organizational skills, capable of maintaining detailed documentation for security processes and incidents.

#LI-RR1

PT Korelasi Persada Indonesia is an information security solutions and services company based in Tangerang Selatan. Co‑founded by experienced information technology professionals, the company was established to support corporate partners in planning, building, and operating effective information security solutions that enhance business efficiency. We help organizations reduce risk, ensure compliance, strengthen agility, and achieve their strategic goals with greater confidence. Our mission is to become Indonesia’s premier information security services provider by delivering high‑quality solutions that consistently exceed customer expectations.

Role and responsibilities:

• Day to day operational support for security devices.
• Provide technical support for each IT security technology.
• Provide technical documentation (Standard Operation Procedure, Method of Procedure, User Guide, Incident Report, etc).
• Collaborate with junior level for prepare and provide periodic daily report, weekly report, monthly report and quarterly report.
• Manage and maintain on security devices (including keeping the technology up‑to‑date).
• Responsible for incident response and handling.
• Follow‑up the request relevant to the IT security technologies in change management process.
• Analysis incident from data and logs collected by junior level for identification incident.
• Follow‑up resolution incident came from junior level, escalate to next level if incident not resolved.

Preferred skills:

• Having knowledge in Operating System (Windows/UNIX)
• Having knowledge in Networking Protocol and implementation (TCP/IP, OSI Layer, Routing)
• Having knowledge in Information Security
• Passionate to learn, hardworking, good team player
• Good interpersonal and communication skill

Kredivo stands out as one of Indonesia’s fastest‑growing consumer finance products. It offers instant financing, allowing buyers to quickly purchase their favorite e‑commerce products. Shoppers enjoy the simplicity of a 2‑click checkout across many online and offline merchants. Kredivo is powered by an advanced system that performs instant credit risk decisioning, leveraging extensive digital footprint data to ensure accurate credit assessment.

We are looking for a highly skilled and experienced Cloud Infrastructure Security Engineer (SDE4) to join our team as an Individual Contributor. In this critical role, you’ll be responsible for leading projects, designing, implementing, and maintaining robust security posture for our cloud infrastructure across both Google Cloud Platform (GCP) and Amazon Web Services (AWS). Your direct contribution will be vital in enhancing our security controls, automating security processes, and ensuring continuous compliance with industry standards.

Primary responsibilities:

• Developing and implementing cloud infrastructure security best practices for GCP and AWS.
• Configuring and managing native cloud security services like GCP Security Command Center and AWS Security Hub.
• Implementing and gatekeeping continuous security monitoring, threat detection and comprehensive compliance auditing.
• Defining baselines, implementing, and enforcing security policies across the organization’s cloud infrastructure.
• Designing and deploying secure cloud infrastructure resources using Infrastructure as Code (IaC).
• Developing robust CI/CD pipelines for IaC deployments and integrating Policy as Code solutions to automate security policy enforcement.
• Conducting periodic security assessments and leading vulnerability remediation efforts for cloud infrastructure.
• Collaborating closely with our Information Security and Infrastructure Operations teams to embed security seamlessly throughout the software development lifecycle.
• Staying up‑to‑date with the latest cloud security threats, technologies, and best practices.
• Drive the infrastructure security initiatives, contributing to the overall infrastructure security strategy and roadmap.

Qualifications:

• Minimum of 5 years of experience in cloud security, with a strong focus on infrastructure security.
• Proven hands‑on experience and deep familiarity with GCP Security Command Center.
• Extensive experience with AWS security services, including AWS Security Hub, GuardDuty, Inspector, AWS Config, AWS Service Control Policies (SCPs), and AWS Control Tower.
• Demonstrable expertise and active hands‑on experience with Infrastructure as Code (IaC), preferably Terraform.
• Solid understanding and practical experience with Policy as Code principles and implementation.
• Experience with Atlantis for enhanced Terraform collaboration and automation.
• A keen interest in and exposure to security compliance frameworks (e.g., ISO 27001, CIS Framework, NIST SP 800‑53, and PCI‑DSS).
• Solid understanding of networking concepts, least privilege access control, and data encryption in cloud environments.
• Excellent problem‑solving skills and the ability to troubleshoot complex security issues effectively.
• Strong communication and collaboration skills, with the ability to work effectively in a cross‑functional team environment.
• Relevant cloud security certifications (e.g., GCP Professional Cloud Security Engineer, AWS Certified Security – Specialty) are a plus.

#LI-RB1

Be The First To Know. Set Email Alert: Job title, Location, What Locations Can I Find These Jobs In?