Security Engineer

Job Description
The Grab’s InfoSec team is responsible for building secure infrastructure. We coordinate corporate security with
Grab’s IT and thus enable the organization to optimize and manage its infrastructure and minimize security risk.

A critical factor in ensuring adequate protection for all data is the responsive updating and application of policy and guidance to address the latest changes in technologies while defending against the latest developing threats.

Equally important is the necessity to ensure that the policies and guidance provide sufficient flexibility to allow their adaptation to the diverse missions across Grab.

Get to know the Role:
We are looking for an outstanding Security Engineer who will be performing benchmark security controls with industry best practices and specifically against in-depth knowledge and hands-on experience of IT security architecture and design (firewalls, Intrusion Detection Systems, Virtual Private Networking, Vulnerability. Consult with the business owner on identified or foreseeable internal and external risks and work with a business owner to reduce risks based on security best practices for third-party vendors.

The day-to-day activities:
• Administer and maintain existing security infrastructure
• Provide Level 1 – 3 support for IT team and business units on security topics
• Create and maintain documented best practices for support of internal staff.
• Assist with the secure design and deployment of company’s global network systems including LANs, WAN, IACS,
wireless networks, e-mail gateways, DNS, etc.
• Verifying compliance with Center for Internet Security (CIS) Benchmark checks.
• Install, test and maintain secure configurations for routers, switches, firewalls, wireless access points, and other
network appliances such as e-mail gateways, DNS, etc
• Collaborate with management and department leaders to assess near- and long-term network security requirements.
• Develop, implement, maintain policies, procedures, and associated training plans for network administration, usage,
and disaster recovery.
• Assist with the research, design, and implement new technologies and systems in order to upgrade or replace legacy technologies or systems.

The must haves:

• A Bachelors/Master’s in Computer Science, Mathematics or an equivalent quantitative discipline.
• 5+ years of experience in designing and implementing security systems.
• Technical ability: Scripting languages such as PowerShell and Python.
• Architecture skills: Passion for system architecture with a primary focus on security aspects
• Security knowledge: Fundamental understanding of security best practices. Review security vulnerabilities and determine what modifications are needed to minimize risk to the organization via enhancements to the existing environment.
• Communication: Excellent ability to communicate technical solutions. Assist in developing test plans, test the products, make recommendations and assist in developing the architecture and implementation plan for approved solutions.
• Teamwork and advocacy: Fostering a culture of security consciousness across various teams.
• Data Driven: Develop and maintain a comprehensive set of security benchmarks and guidelines that are readily adoptable by the system and network administrators and software engineers.