Back to search:Security Engineer / Jakarta (south)

Role Overview

We are looking for a Security Engineer to ensure the security and integrity of our software and systems. You will work closely with engineering teams and leads across business, finance, HR, and operations to implement security best practices and protect our applications and infrastructure.

What you'll do:

  • Secure Code Review:
    Review code to identify and fix security issues, including SQL injection, XSS, and IDOR vulnerabilities.
  • Security Testing:
    Perform penetration testing, vulnerability scanning, and static/dynamic analysis to find and fix weaknesses.
  • Threat Modeling:
    Work with development teams to identify potential threats, assess risks, and suggest mitigation strategies.
  • Bug Bounty Management:
    Triage and validate security reports from external researchers.
  • Security Architecture:
    Advise on secure design patterns and architecture to ensure security is integrated from the start.
  • Incident Response:
    Help investigate and resolve security incidents, minimizing impact and preventing recurrence.
  • Security Awareness:
    Educate engineering and non-engineering teams on security best practices and promote a security-first culture.
  • Continuous Learning:
    Stay updated on the latest security trends, vulnerabilities, and attack techniques.

Must-Have Qualifications:

  • Bachelor's degree in
    Computer Science, Engineering, or related field
    .
  • Minimum
    3 years of experience
    in application security, secure coding, and vulnerability management.
  • Strong knowledge of
    web application vulnerabilities, OWASP Top 10, and modern attack vectors
    .
  • Hands-on experience with
    web application security testing tools
    (e.g., Burp Suite, OWASP ZAP).
  • Proficiency in
    secure coding practices
    with common programming languages (
    Java, Python, Golang
    ).
  • Good understanding of
    cloud security principles and best practices
    .
  • Strong
    analytical and problem-solving skills
    .
  • Excellent
    communication and teamwork abilities
    .

Nice-to-Have:

  • Security certifications such as
    CISSP, CEH, OSCP
    .
  • Experience with
    multiple cloud platforms
    (AWS, GCP, Azure).
  • Familiarity with
    DevSecOps practices
    and CI/CD security integration.

Send your updated CV to
if you're unable to apply through LinkedIn.

Let's create something awesome together #Netzme #Hiring #WeAreHiring

Apply on the website