Offensive Security Engineer

1 week ago

Singapore Local Office Traveloka Full time $120,000 - $180,000 per year

It's fun to work in a company where people truly BELIEVE in what they're doing

‎ 

‎ 

Job Description

Securing an organization and its information systems requires a holistic approach that includes continuous security verification, extending beyond standard testing and assessment methods. By assuming the role of a threat actor, the Offensive Security Team delivers valuable findings and insights with practical impact, which must be prioritized. Utilizing an offensive or attacker's mindset, the team continuously reviews everything within the organization—including applications, infrastructure, and business processes—to identify potential loopholes that could be exploited by a real attacker to compromise the organization.

As an Offensive Security team member at Traveloka, your daily tasks encompass

penetration testing, adversarial emulation exercises, threat intelligence, maintaining offensive threat models, developing offensive security tools, reviewing bug bounty reports, and hunting vulnerabilities based on commonalities, internal trends, and latest threats. Your coverage area is comprehensive, assessing the organization from an attacker's perspective. We are seeking a candidate with robust cybersecurity technical expertise and solid understanding about cyber intrusion in an organization. This role is crucial for ensuring we stay abreast of the latest threats and are capable of identifying unique and complex challenges specific to Traveloka.

  • Perform penetration testing which includes Network, web application, Mobile app (both Android & iOS), APIs Cloud Security
  • Execute penetration testing projects using the established methodology, tools and rules of engagements.
  • Execute red team assessments to highlight gaps impacting organizations security postures.
  • Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations.
  • Perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations.

‎ 

Requirements

  • Proven track record of highly technical cybersecurity expertise such as CTF (Capture the Flag), bug bounty, publication, blog, open source security tool contribution, speaking engagement, or Offensive Security certification.
  • Fluent in programming with any language and shell scripting.
  • Experience in Windows security, Unix security, network security, and web application security is a must.
  • Experienced in cloud computing like AWS and GCP is a plus.
  • Experienced in red or purple team exercise is a plus.
  • Able to practically demonstrate various security vulnerabilities, exploits, and attacks in web applications, computer infrastructure, and personal computers.
  • Understand about cybersecurity threats related to travel and tech industries.
  • Excellent written and verbal communication skills
  • Dedication to cybersecurity alongside a strong commitment to continuous learning about new technologies

‎ 

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us

  • Offensive Security Engineer

    2 weeks ago

    Singapore Traveloka Full time

    Overview It\'s fun to work in a company where people truly BELIEVE in what they\'re doing!Securing an organization and its information systems requires a holistic approach that includes continuous security verification, extending beyond standard testing and assessment methods. By assuming the role of a threat actor, the Offensive Security Team delivers...

  • Head of Offensive Security

    6 days ago

    Central Singapore Emprego SG Full time

    **Location** Singapore, Central Singapore **Job Type** Full Time **Salary** $16,000 - $25,000 Per Month **Date Posted** 6 hours ago Additional Details **Job ID** 9900 **Job Views** 25 Roles & Responsibilities Background: To keep up with the fast pace of the software development release cycle, the Application Security and DevSecOps team is...

  • Apac Offensive Security Expert

    8 hours ago

    Singapore BNP Paribas Full time

    In Asia Pacific, BNP Paribas is one of the best-positioned international financial institutions with an uninterrupted presence since 1860. Currently with over 18,000 employees* and a presence in 13 markets, BNP Paribas provides corporates, institutional and private investors with product and service solutions tailored to their specific needs. It offers a...

  • Assistant Manager

    2 weeks ago

    Singapore TechBridge Market Full time

    If you are passionate about playing a key role in the success of a German Multinational Automotive Corporation, we want to hear from you! Our client is a well-established brand in the Automotive industry and they are looking for a passionate and driven **Assistant Manager - Offensive Cyber Security Specialist **to join their team. This is an exciting...

  • Lead Cybersecurity Architect, Offensive/Defensive Security

    2 weeks ago

    Singapore JPMorganChase Full time

    Lead Cybersecurity Architect, Offensive/Defensive Security Join to apply for the Lead Cybersecurity Architect, Offensive/Defensive Security role at JPMorganChase Lead Cybersecurity Architect, Offensive/Defensive Security 1 day ago Be among the first 25 applicants Join to apply for the Lead Cybersecurity Architect, Offensive/Defensive Security role at...

  • Cyber Security Engineer

    3 days ago

    Singapore watchTowr Full time

    Overview watchTowr is the Preemptive Exposure Management capability trusted by Fortune 500 companies and critical infrastructure providers. By combining proactive threat intelligence, real attacker telemetry, and automated red teaming, watchTowr continuously identifies and validates real exposure - so security teams can outrun real-world threats. When...

  • Zero-day Security Researcher

    8 hours ago

    Singapore PIXIEPOINT SECURITY PTE. LTD. Full time

    We are seeking talented and passionate individuals to join our Offensive Security team! This position has a strong focus on discovering unknown vulnerabilities in systems and devices. **Duties and Responsibilities**: **Required Qualifications**: - Proficiency in at least one of the following languages: C, C++, Intel and ARM assembly code - Knowledge and...

  • Zero-day Security Researcher

    2 weeks ago

    Singapore PixiePoint Security Pte Ltd Full time

    We are seeking talented and passionate individuals to join our Offensive Security team! This position has a strong focus on discovering unknown vulnerabilities in systems and devices. This position will be based in Singapore. **Duties and Responsibilities**: **Required Qualifications**: - Proficiency in at least one of the following languages: C, C++,...

  • Security Engineer

    2 weeks ago

    Singapore ByteDance Full time

    About ByteDance Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok, Helo, and Resso, as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create...

  • Head of Offensive Security

    2 days ago

    Singapore SEKURO OPERATIONS PTE. LTD. Full time $120,000 - $200,000 per year

    Head of OffsecSekuro is a trusted provider of information security consulting services. We are currently recruiting a smart, experienced and motivated security professional to join manage our Technical Assurance OFFSEC team and engagements in Asia. The role involves working with mid-market to enterprise level clients. The successful candidate will have a lot...