Defensive Security Manager

All, Indonesia, Indonesia (Hybrid)

Full Time Mid-level / Intermediate USD 53K - 99K *

DANA

Mulai transaksi mudah dan aman dengan DANA, dompet digital terbaik untuk kebutuhan sehari-hari. Kirim uang, bayar QRIS, dan nikmati kemudahan transaksi lewat DANA. Terdaftar & diawasi oleh Bank Indonesia dan KOMINFO

View all jobs at DANA

Apply now Apply later

Posted 1 week ago

DANA Indonesia is looking for IT Blue Team Lead. The role is to assist VP IT Security with tactical strategy as well as implementation and monitoring of cyber security defence and capabilities throughout the enterprise.

Details:

Set up a minimum security standard practice for all identified technology used and ensure its consistency and compliance in the implementation
Create innovative security solution that can solve customer problem and pain points
Provide measurement and indicator for resilience of security defence to ensure high maturity implementation in the protection capabilities
Establish indicator, manage and monitor security detection anomalies with appropriate alert triage and escalation matrix
Respond to threats in real time, recognize problems by identifying abnormalities and reporting violations and establish incident response capabilities
Improve and maintain security incident playbook including the practice sessions
Provide threat watch, threat detection, and threat response capabilities to safeguard the business and assets
Collaborate with engineering to integrate security controls in the existing services
Document security record and analysis and communicate the result to different key stakeholders and for the purpose of compliance to certain certifications.
Manage security vulnerabilities remediation and track for its progress
Actively contribute and manage security projects; able to have out-of-the-box thinking to develop security in the existing solutions

Requirements:

BSc degree Computer Science/Cyber Security (or related field), Master degree would be preferable.
Experience in managing the team, have experience at least 5 years in the same field.
Have valid security certification (e.g. CISSP, CHFI, CEH) would be advantage
Familiar with different security frameworks and their implementation (e.g. CIS, Mitre Attack, Mitre Defence, NIST, ISO, PCI-DSS, OWASP Top 10, SANS Top 25)
Strong capabilities in best practice implementation, optimization, and automation with less or no supervision in the complex environment
Advice other, recognized by other as an expert in the field of security implementation and best practice
Excellent problem solving, critical thinking, and verbal communication in English and Bahasa
Have a knowledge of penetration testing to understand potential sources of incoming threats and able to create solid control protection would be an advantage.