Security Operation Manager

It's fun to work in a company where people truly BELIEVE in what they're doing!

‎ 

‎ 

Job Description

Security Engineering and Operations at Traveloka is responsible to ensure that Traveloka’s products, services, infrastructures, and business operations meet the high-security standards through control, verification, testing, design, monitoring, and implementation of technical security engineering and operation practices.

The Security Operations team protects our organization against cyber threats by performing protection, detection, and response. The personnel will perform round-the-clock monitoring of an organization’s network and investigate any potential security incidents. The Security Operation Manager is responsible for the whole processes of Security Operations such as running the 24x7 SOC, security alert review, incident response, and security configuration fine-tuning. The scope area of the work includes cloud security, corporate infrastructure security, business operations security, and application security.

Responsibilities

• Manage Traveloka Security Operations team to run the SOC and work with relevant stakeholders.

• Manage the relationship with external party such as Managed Security Service Provider, security partner, and vendor.

• Manage the Security Operations projects and programs.

• Provide expertise to help improve security domains (identify, detect, prevent, respond, and recover) of the organization.

• Maintain security tools and processes for protection, monitoring, and remediation including SIEM, AV, EDR, IDS, IPS, EMail Security, and DLP.

• Investigate security events and incidents; collect evidence and work across teams to isolate and/or remediate as necessary, document best practices found as a baseline for further improvements to avoid similar issues.

• Act as the main advisor and subject matter expert for cloud security, corporate infrastructure security, and business operations security.

‎ 

Requirements

• Extensive exposure and experience in Security Operations and cybersecurity industry.

• Previous experience leading and managing a team of defensive security experts with proven track records of defending the organization against modern cyber threats.

• Strong analytical skills with the ability to generate insight from statistics and to make strong assumptions based on gathered information.

• Strong managerial and technical skills in threat hunting/detection and incident response.

• Must have experience and knowledge of cloud platform (AWS/GCP), Windows security, Linux security, active directory security, network security, web security, MITRE ATT&CK®, programming, and automation.

• Preferably has knowledge of security of common third-party collaboration tools (example: Google Workspace, Slack, Jira), Mac security, malware analysis, and purple team exercise.

‎ 

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!