Associate Red Teamer (Offensive Security)

GO-JEK
Full Time
Jakarta
Posted 30+ hari yang lalu
Job description
Location Jakarta Work Type Permanent Application Posted March 17, 2022

About the Role


If you’re looking to be a part of a dynamic, highly-analytical team and an opportunity to dive deep into projects surrounding information security, look no further. As our Red Teamer (Offensive Security) for GoTo Financial, you’ll take the wheel in ensure product security for Gojek. Along with Perform a thorough documentation on how vulnerabilities were exploited, you will be in charge of assist in identifying, tracing and neutralizing the active threats. Working closely with Blue Team, you will get to manage unique security incidents.



What Will You Do

  • Actively involved as an individual contributor and learning your way to become subject matter experts from the beginning to the end such as: (1) upon request, during an active incident response of a real attack, (2) data/system breaches, (3) catastrophic system failures due to cyberattack, and (4) involved early in any important projects that required higher degree of security assessments from the adversaries’ attack point of view
  • Assist in identifying, tracing and neutralizing the active threats
  • Perform a thorough documentation on how vulnerabilities were exploited and what changes should be made to prevent that from being exploited again
  • Assist/participate in presenting the findings to multiple stakeholders involved in the study and/or incidents
  • Proactively identify (and attempt to exploit) multiple vulnerabilities that are affecting the system and data security of our business
  • Ensure that you upkeep required training regimens within Offensive Security Team across the rest of the Red Team members
  • Participate in regular purple teaming exercises together with the Blue Team

What Will You Need

  • At least 1 year of experience in ethical hacking, manual penetration testing and/or red teamer operations covering at least one of the following domains: infrastructure, operating systems, web app, mobile app, software bug testing
  • Moderate level of code/programming experience (e.g.: write/modify exploit codes, trace and debugging traditional/OOP/API style programming)
  • A strong hacker mindset including social engineering, logical and creative thinking (outside of the box) and unconventional thought processes when playing the devil advocates
  • Strong dedication and desire to understand how things work, on a very deep level
  • Exposure to the red teaming aspect of technical writing documentation of the findings to multiple levels of stakeholders (from engineering to senior managers)
  • Hands-on exposure in at least two of the following domains: Physical Security, Social Engineering, Infrastructure (Cloud & On-Premise), Offensive Mindset, Computer Network & Systems, Detection Evasion, Penetration Testing, Vulnerability Research, Technical Writing, DevSecOps (incld. CI/CD), Threat Intelligence, OSINT

About the Team

Offensive Security Team is a sub-pod of the GoTo Financial Security, based in Singapore & Jakarta. The Offensive Security Charter: To help hedge against surprise, particularly catastrophic surprises - by not only playing the adversary, but also devil's advocate and related roles. The team challenge complacency or unthoughtfulness in security-by-design principles and discover weaknesses before real adversaries do.

About Gojek

Gojek is a Super App. It is one app for ordering food, commuting, digital payments, shopping, hyper-local delivery, and a dozen other products. We are Indonesia’s first decacorn. We are also the only Southeast Asian startup to be part of Fortune's list of 'Companies That Changed The World.'

Our Mission: To create and scale positive socio-economic impact for our customers, driver-partners, business, and MSMEs.

As of 2018, Gojek processed more than $9 billion in annualized gross transaction value across all markets where it operates - in Singapore, Vietnam, and Indonesia. We have the largest food delivery product in Asia (outside of China) and is the largest payments wallet in Southeast Asia.

Gojek contributed IDR 249 T to the Indonesian economy (equivalent to 2% of Indonesia's GDP in 2020). As of Q1 2021, the Gojek App witnessed over 190mn downloads by customers. The platform has over 2mn Driver Partners & ~900000 Merchant Partners across SEA.

About GoTo Financial

GoTo Financial brings secure, reliable, and user-friendly financial solutions to over 55 million monthly active users, more than 14 million merchants, and over 2.5 million driver-partners eager to benefit from the digital economy in the GoTo ecosystem.

GoTo Financial’s consumer services include GoPay, GoPayLater, and other financial services. We also serve businesses of all sizes through leading payment gateway Midtrans, Indonesia’s largest cloud POS network Moka and GoKasir. We also have the all-in-one merchant solution GoBiz, GoBiz Plus, GoStore, and Selly - available in Indonesia and Southeast Asia.

Gojek and GoTo Financial are committed to building a diverse and inclusive workplace and are equal opportunity employers. We do not discriminate on the basis of race, religion, national origin, gender, gender identity, sexual orientation, disability, age, education status, or any other legally protected status.

Lowongan Kerja Viral!

Related Jobs

All Related Listed jobs