Get to know our Team:
Trust is of paramount importance to Grab’s core business. We work very hard to secure the platform that powers the super app of Southeast Asia and enables millions of users in their everyday lives. The Mobile Security Architect is a key member of the Security Architecture group at Grab responsible for keeping our software architecture secure while adapting to the high speed growth of our business and enormous scale. The team’s mission is to keep interactions on our mobile platform, apps and APIs “secure by design”.
Get to know the Role: Mobile Security Architect
Overall, the mobile security architect will be responsible for driving the strategy of our mobile applications, especially from a security perspective. The candidate will also be responsible for evaluation, planning, and development of an enterprise security technology roadmap mainly related to application and mobile security. The individual will have deep experience defining best practices, writing policy/standards and driving adoption of new architectural designs. As a security thought leaders will deliver architectural guidance, lead proof-of-concept projects, and conduct regular security consultancies for the engineering division.
- Design, build and implement enterprise-class scalable security systems for production environment
- Align standards, frameworks, and security with overall business and technology strategy
- Identify and communicate current and emerging mobile security threats
- Conduct research on the evolving trends in mobile security space and keep abreast of the latest vulnerabilities
- Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
- Safeguard the interests of millions of customers and making sure that our mobile apps are safe to use
- Guide the application development teams by setting guidelines on all aspects related to security, like usage of frameworks and libraries, secure coding, storage and protection of data
- Lead the vision for security for the platform and evangelize and create “Secure by default” coding frameworks for Android/iOS
- Design and evangelize a suitable strategy for us to use a Trusted Execution Environment (TEE) for our super sensitive mobile operations
- Oversee the fraud prevention and other detection mechanisms on the device and advise suitable changes in strategy and implementation
- Focus on mobile safety at a transaction level, thus enabling us to block specific transactions, as needed
- Set directions for our internal team of ethical hackers on what attacks they could try
- Lead the efforts in generating and protecting Grab’s Intellectual Property in the security realm
- Contribute to new technical articles, internal and external blogs heralding our security achievements and breakthroughs
The day-to-day activities:
- Collaborate with a cross-functional team of engineering, security, architecture, product and design to come up with a Security Architecture strategy and implementation
- Participate in technical and product review meetings
- Produce technical documents such as RFCs and other artefacts to clearly communicate the Security architecture philosophy and strategy
- Design review of critical components within the Grab/partner ecosystem and check for compliance with the agreed vision
- Drive greater collaboration between the mobile app engineering and security teams
- Contribute code to suitable framework components that would enable developers to worry less about security and implement logic themselves. (Android/iOS)
- Evangelize and publish security models across the org
- Research on the evolving threats and build mitigations to protect against them
The must haves:
- Product Building expertise: Possess strong background and experience as a successful Software engineer/Architect in building large scale, highly available Internet and mobile applications.
- Large scale security architecture: Significant experience working on mission critical mobile applications focussing on their security aspects
- Security knowledge: Deep expertise in security architecture of systems, sandbox implementations, mobile operating systems (Android/iOS), Internet applications, security protocols and algorithms
- Ability to learn quickly: Passion for mobile security and ability to pick up and learn new technological advances very quickly
- Team Working: History of effectively working across geographically distributed partner teams
- Great Communication Skills: Ability to effectively communicate vision and roadmap to all stakeholders. Exceptional communication skills with diverse audiences
- Data Driven: Proven ability to make smart feature versus time-to-market trade-offs; experience using data and metrics to back up assertions of business value. Empathy towards user problems, and an ability to distil insights into the right product answer
- A Bachelor's/Master’s/PhD: in Computer Science, Mathematics or an equivalent engineering discipline
Get to know Grab:
Grab is more than just the leading ride-hailing and mobile payments platform in Southeast Asia. We use data and technology to improve everything from transportation to payments and financial services across a region of more than 620 million people. We work with governments, drivers, passengers, merchants, and the community, to solve critical problems in Southeast Asia.
Grab began as a taxi-hailing app in 2012, but we have since extended our product platform to include GrabCar, GrabShare, GrabBike, GrabHitch, GrabExpress, GrabFood, GrabCoach, GrabShuttle, GrabCycle. We recently launched our fintech platform – GrabFinancial, which consists of payments, lending and insurance. Our latest addition is GrabVentures, an in-house incubation platform. We are focused on pioneering new commuting and payment alternatives for drivers and passengers with an emphasis on convenience, safety, and reliability. Currently, we offer services in 8 countries. Our R&D offices are in Singapore, Seattle, Beijing, Bangalore, Jakarta and Vietnam. We aspire to unlock the true potential of Southeast Asia and look for like-minded individuals to join us on this ride.
If you share our vision of driving South East Asia forward, apply to join our team today.
