Security Engineering Lead (Red Team)

The Security Engineering Lead will spearhead Information Security programs to protect Amartha from internal and external threats, leading a team of high-performing offensive security engineers and fostering a culture of innovation and continuous learning.

Requirements

• 8+ years in security engineering, with 3+ years in a leadership role
• Ability to express technical information clearly at different organizational levels
• Having relevant certification are preferable (e.g. CEH,OSCP, eCPPT, Ejpt etc)
• Advance knowledge in API Security, Mobile/Application Security, Cloud Security
• Advance knowledge in security adversarial techniques, tactics, and procedures
• Experienced in conducting Static Application Security Test (SAST) and Dynamic Application Security Test (DAST)
• Proficient in scripting using Python, Bash, Go
• Highly skilled with strong hands-on experience with various security assessment tools such as Metasploit, BurpSuite, ZAP, OWASP tools, Hydra, Netsparker, Wireshark, Apktool, nikto, Cloudbrute, Kali Linux tools, Frida, MobSF, or comparable technologies
• Familiar with Cloud Platform such as GCP, AWS

Benefits

• Generous Paid Time Off
• 401k Matching
• Retirement Plan
• Tuition Reimbursement
• Relocation Assistance