Job closed.
Job Description
- Develop, documents and executes threat hunting operations to detect known adversary TTPs.
- Design and implement new approaches to endpoint protection, malware detection & mitigation, auditing, and compliance need
- Come up with new and innovative ways of increasing security, manageability, and transparency while preserving privacy and ease-of-use with respect to endpoint protection
- Define necessary security controls which shall be applied in our endpoints (workstation and server) based on common security standards
- Maintain and update standards for enterprise security program services and support full deployment of automated tools to monitor enterprise workstations, servers, and mobile devices with EDR tools, anti-virus, anti-spyware/malware, personal firewalls, host-based IPS functionality, DLP, NAC, email protection, and web browser protection on an ongoing basis.
- Review, approve, and authorize the Service Provider's recommended definition of standards and automated tools for endpoint protection
- Perform patch management processes toward covered domains
- Propose possible solutions controls in endpoint as part of endpoint protection
- Communicate with relevant team members to execute and monitor the security controls in the endpoint
- Work cooperatively with other parts of Tokopedia on cross-functional technologies and initiatives to enhance security
- Engage in incident response activities.
- Review technical documentations and guidelines
Minimum Qualifications
- 5+ years of experience with endpoint security solutions
- Experience securing applications, data at rest and in transit at the workstation, server and cloud
- Strong information security background in supporting enterprise security applications and services.
- Preferred security tools experience in McAfee, Cisco, TrendMicro, McAfee ENS, EDR, Cisco Firewall, Tripwire
- Strong understanding of Cyber Security and associated domains
- Strong Knowledge of configuring security controls in operating systems, including Microsoft Windows, UNIX, Linux, and MacOS
- Knowledge of using and applying vulnerability assessment tools, including Nessus, Security Content Automation Protocol (SCAP), Secure Technical Implementation Guides (STIGs), checklists, and Security Requirements Guides (SRG)
- Familiar with MITRE ATT&CK, NIST CSF, and CIS Framework
- Experienced in security incident, analysis and investigation
- Experienced with open source technologies
- Knowledge in security and compliance frameworks and regulations, such as NIST, ISO, PCI DSS, GDPR
- Ability to learn and adapt to new frameworks/technologies and quickly integrate with them for automation of service delivery
- Strong leadership skills
- Excellent interpersonal, verbal & written communication skills
- A clear passion and enthusiastic about cyber security
- Certifications a plus (CISSP, OSCP, CEH, GSEC, GCIH or similar).
Jobs Summary
- Job Level
- Mid-Senior Level / Manager
- Job Category
- IT and Software
- Educational Requirement
- Bachelor's degree graduate
- Recruiter response to application
- Sometimes
- Office Address
- South Jakarta, DKI Jakarta, Indonesia
About Tokopedia
Tokopedia is an Indonesian technology company with a mission to democratize commerce through technology. We are the leading marketplace in Indonesia; we encourage millions of merchants and consumers to participate in the future of commerce.
Our vision is to build an ecosystem where everyone can start and discover anything with ease.
We are holding to these three principles that drive us forward. We call them our DNA, the traits that embody who we are as Tokopedia Nakama: Focus on Consumer, Growth Mindset, and Make it Happen, Make it Better