Cloud Infrastructure Security Engineer (SDE 4IC)

Jakarta
Permanen
kerja tetap

1 bulan lalu

Kredivo stands out as one of Indonesia's fastest-growing consumer finance products. It offers instant financing, allowing buyers to quickly purchase their favorite e-commerce products. Shoppers enjoy the simplicity of a 2-click checkout across many online and offline merchants. Kredivo is powered by an advanced system that performs instant credit risk decisioning, leveraging extensive digital footprint data to ensure accurate credit assessment.We are looking for a highly skilled and experienced Cloud Infrastructure Security Engineer (SDE4) to join our team as an Individual Contributor. In this critical role, you'll be responsible for leading projects, designing, implementing, and maintaining robust security posture for our cloud infrastructure across both Google Cloud Platform (GCP) and Amazon Web Services (AWS). Your direct contribution will be vital in enhancing our security controls, automating security processes, and ensuring continuous compliance with industry standards.Your primary responsibilities will include:

Developing and implementing cloud infrastructure security best practices for GCP and AWS.
Configuring and managing native cloud security services like GCP Security Command Center and AWS Security Hub.
Implementing and gatekeeping continuous security monitoring, threat detection, and comprehensive compliance auditing.
Defining baselines, implementing, and enforcing security policies across the organization's cloud infrastructure.
Designing and deploying secure cloud infrastructure resources using Infrastructure as Code (IaC).
Developing robust CI/CD pipelines for IaC deployments and integrating Policy as Code solutions to automate security policy enforcement.
Conducting periodic security assessments and leading vulnerability remediation efforts for cloud infrastructure.
Collaborating closely with our Information Security and Infrastructure Operations teams to embed security seamlessly throughout the software development lifecycle.
Staying up-to-date with the latest cloud security threats, technologies, and best practices.
Drive the infrastructure security initiatives, contributing to the overall infrastructure security strategy and roadmap

Qualifications:

Minimum of 5 years of experience in cloud security, with a strong focus on infrastructure security.
Proven hands-on experience and deep familiarity with GCP Security Command Center.
Extensive experience with AWS security services, including AWS Security Hub, GuardDuty, Inspector, AWS Config, AWS Service Control Policies (SCPs), and AWS Control Tower.
Demonstrable expertise and active hands-on experience with Infrastructure as Code (IaC), preferably Terraform.
Solid understanding and practical experience with Policy as Code principles and implementation.
Experience with Atlantis for enhanced Terraform collaboration and automation.
A keen interest in and exposure to security compliance frameworks (e.g., ISO 27001, CIS Framework, NIST SP 800-53, and PCI-DSS).
Solid understanding of networking concepts, least privilege access control, and data encryption in cloud environments.
Excellent problem-solving skills and the ability to troubleshoot complex security issues effectively.
Strong communication and collaboration skills, with the ability to work effectively in a cross-functional team environment.
Relevant cloud security certifications (e.g., GCP Professional Cloud Security Engineer, AWS Certified Security - Specialty) are a plus

#LI-RB1

Kredivo Group

Lamar