IT Security Engineer

Responsibilities

• Conduct scheduled penetration testing on internal infrastructure, applications, and networks to identify security vulnerabilities.
• Manage routine vulnerability scanning and coordinate patching or technical mitigation processes with the Infra/DevOps team.
• Manage and optimize SIEM/EDR rules to accurately detect threats and reduce false positives.
• Proactively hunt for hidden threats within the network using log-based and data traffic investigation methodologies.
• Perform technical investigations during incidents, collect digital forensic evidence, and provide rapid resolution recommendations.
• Provide technical guidance to strengthen the configuration of servers, databases, and network devices in accordance with security standards.
• Implement the company's cybersecurity policies and procedures.

Qualifications

• Minimum of 3 years of experience in IT Security, Security Engineering, or Security Operations Center (SOC).
• Experience in security testing on Android and iOS platforms, as well as securing APIs, microservices, and databases.
  Strong understanding of the OWASP Top 10.
• In-depth technical experience in managing SIEM, EDR, and vulnerability management tools.
• Capable of performing Internal Penetration Testing and Vulnerability Assessments both manually and using tools such as Burp Suite, etc.
• Able to analyze data packets, system logs, and understand attack techniques based on the MITRE ATT&CK framework.
• Relevant cybersecurity certifications will be an advantage.
• Willing to work from our Head Office in Mampang.