Senior Security Engineer - Blue Team

We are seeking a highly skilled and experienced Senior Security Engineer - Blue Team Specialist to join our dynamic cybersecurity team. As a Senior Security Engineer, you will be responsible for strengthening our organization's security posture by implementing proactive defense strategies, conducting continuous monitoring, and responding to security threats and incidents.
Your expertise in cyber threat intelligence, security monitoring, incident response, and security operations will play a pivotal role in protecting our infrastructure, applications, and systems. This role requires a proactive, analytical individual with a passion for defensive security, threat hunting, and improving security frameworks. It's a bonus if you have experience in assessing, evaluating, and ensuring compliance with security policies, standards, and regulations
About FlipRafi, Luqman, and Anjar, who were college friends in Universitas Indonesia, started Flip as a project in 2015 to transfer payments to each other at a fraction of what banks would charge them. They are pioneers in the Indonesian market, with their technology now helping millions of Indonesians, both individuals and businesses, carry out bank-to-bank money transfers through a reliable and seamless app.
After five years of operations, Flip has helped Indonesians transfer money worth several trillions of rupiah and has received double-digit funding from respectable investors such as Sequoia India, Insight Partner, and Insignia. Flip’s ultimate mission is to give Indonesians access to one of the most progressive and fairest financial services in the world.
At Flip, we always strive to provide the fairest place for you to work, learn, and grow with talented and fun people in various opportunities to advance your career and get fair rewards. We believe that we have to treat employees, customers, and all stakeholders fairly and respectfully. Fair treatment for employees means we establish clear goals, facilitate our employees to achieve them, and value their contribution to the company with equitable benefits.
What You'll Do:

• Threat Detection and Monitoring: Develop and maintain security monitoring solutions to detect malicious activity, unauthorized access, and system vulnerabilities.
• Continuously monitor and analyze security alerts and logs from SIEM, XDR/EDR, IDS/IPS, and other security tools.
• Incident Response and Threat Hunting: Lead investigations into security incidents, conduct forensic analysis, and mitigate cyber threats. Proactively hunt for adversary tactics, techniques, and procedures (TTPs) to identify potential security risks.
• Security Operations and Defensive Strategies: Implement and enhance security measures to protect against cyber threats, including intrusion detection, endpoint security, and network segmentation.
• Threat Intelligence and Analysis: Gather and analyze threat intelligence from various sources to understand emerging threats and improve the organization's defensive capabilities.
• Security Awareness and Training: Develop training programs and security awareness initiatives to educate employees on cybersecurity threats and best practices.
• Vulnerability Management and Patch Deployment: Work closely with IT and DevSecOps teams to identify, prioritize, and remediate vulnerabilities in systems, applications, and infrastructure.
• Security Tooling and Automation: Evaluate and integrate security tools to enhance detection and response capabilities, including automation of security operations.
• Collaboration with Security Auditors: Experience working with security audit teams to analyze gaps and enhance security posture.

What You'll Need:

• Education: Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field. 
• Relevant certifications such as GCIA, GCIH, CISSP, or CEH are highly desirable.
• Experience: Minimum of 5 years of hands-on experience in blue team operations, security operations center (SOC), incident response, threat hunting, or security engineering.
• Technical Proficiency: Strong expertise in SIEM, XDR/EDR, IDS/IPS, firewalls, WAFs, and other security monitoring and defensive tools.
• Networking and Systems: Deep understanding of network security, endpoint protection, cloud security, and security architectures.
• Cybersecurity Knowledge: In-depth understanding of attack vectors, threat modeling, and security defense strategies.
• Security Audit and Compliance Awareness: Familiarity with security compliance frameworks such as ISO 27001, NIST, PCI-DSS, CIS Controls, and regulatory requirements.
• Problem-Solving Skills: Excellent analytical and troubleshooting abilities to detect and respond to security incidents effectively.
• Communication Skills: Strong verbal and written communication skills, with the ability to convey complex security topics to technical and non-technical stakeholders.
• Team Player: Ability to collaborate with cross-functional teams, including IT, development, and compliance teams, to strengthen security defenses.

P.S. if you have experience problems when submitting your CV through this platform, you can send it directly to career@flip.id