Defensive Security Manager

DANA Indonesia is looking for IT Blue Team Lead. The role is to assist VP IT Security with tactical strategy as well as implementation and monitoring of cyber security defence and capabilities throughout the enterprise.

Details:

• Set up a minimum security standard practice for all identified technology used and ensure its consistency and compliance in the implementation
• Create innovative security solution that can solve customer problem and pain points
• Provide measurement and indicator for resilience of security defence to ensure high maturity implementation in the protection capabilities
• Establish indicator, manage and monitor security detection anomalies with appropriate alert triage and escalation matrix
• Respond to threats in real time, recognize problems by identifying abnormalities and reporting violations and establish incident response capabilities
• Improve and maintain security incident playbook including the practice sessions
• Provide threat watch, threat detection, and threat response capabilities to safeguard the business and assets
• Collaborate with engineering to integrate security controls in the existing services
• Document security record and analysis and communicate the result to different key stakeholders and for the purpose of compliance to certain certifications.
• Manage security vulnerabilities remediation and track for its progress
• Actively contribute and manage security projects; able to have out-of-the-box thinking to develop security in the existing solutions

Requirements:

• BSc degree Computer Science/Cyber Security (or related field), Master degree would be preferable.
• Experience in managing the team, have experience at least 5 years in the same field.
• Have valid security certification (e.g. CISSP, CHFI, CEH) would be advantage
• Familiar with different security frameworks and their implementation (e.g. CIS, Mitre Attack, Mitre Defence, NIST, ISO, PCI-DSS, OWASP Top 10, SANS Top 25)
• Strong capabilities in best practice implementation, optimization, and automation with less or no supervision in the complex environment
• Advice other, recognized by other as an expert in the field of security implementation and best practice
• Excellent problem solving, critical thinking, and verbal communication in English and Bahasa
• Have a knowledge of penetration testing to understand potential sources of incoming threats and able to create solid control protection would be an advantage.