Home Job Listings Categories Locations

Security Engineer (Generalist – Security Architecture)

📍 Indonesia

Construction PT GDC Multi Sarana

Job Description

Responsibilities Role Overview Kami mencari Security Engineer level senior (generalist) yang akan membangun fondasi keamanan organisasi dari nol. Posisi ini berperan strategis dalam merancang arsitektur keamanan end-to-end, menyiapkan baseline security, serta membangun ekosistem Blue Team yang matang dan terintegrasi dengan aktivitas Red Team / Pentest (internal maupun vendor). Key Responsibilities Security Architecture & Strategy Mendesain end-to-end security architecture untuk: Application (Web, Mobile, API) Infrastructure (On-premise & Cloud) Data protection & Identity Menentukan trust boundaries, security control, dan integration antar layer Menyusun security roadmap min. 3 tahun (people, process, technology) Threat Modeling & Risk Management Melakukan threat modeling menggunakan: STRIDE MITRE ATT&CK Menentukan defense-in-depth strategy Mengidentifikasi risiko keamanan dan merekomendasikan mitigasi yang realistis

Blue Team Foundation Menyiapkan fondasi Blue Team (defensive security): Logging & monitoring strategy Incident detection & response flow Baseline security control Menentukan tools & proses awal (SIEM, alerting, incident handling)

Red Team & Pentest Awareness Menjadi penghubung antara internal team dengan: Red Team Vendor pentest

Menerjemahkan Hasil Pentest Menjadi Action plan Arsitektur & perbaikan sistem Secure SDLC & AppSec Menyusun dan mengawal Secure SDLC Menentukan baseline AppSec: Secure coding guideline Security review pada design & deployment Bekerja sama dengan engineering & product team

Requirements Requirements : Experience & Technical Skill 5–8 tahun pengalaman di bidang Information Security / Cyber Security Pengalaman merancang security architecture (bukan hanya operasional) Pemahaman kuat pada: Network & application security Identity & access management Security control & best practice

Certification (Mandatory / Preferred) Wajib:

salah satu dari berikut: CompTIA Security+ CISSP

Nilai Tambah (opsional) CCSP OSCP / CEH

Soft Skills Mampu berkomunikasi dengan non-security stakeholders (engineering, product, management) Berpikir strategis dan decision-maker, bukan hanya eksekutor Mampu bekerja mandiri dan membangun sistem dari nol Risk-based mindset (tidak over-engineering)

Nice To Have Pengalaman membangun Blue Team dari awal Pernah bekerja di environment fintech / high-risk industry Pengalaman bekerja dengan regulator atau compliance framework

Ready to Apply?

Don't miss this opportunity! Apply now and join our team.

Job Details

Posted Date: February 23, 2026
Job Type: Construction
Location: Indonesia
Company: PT GDC Multi Sarana

Ready to Apply?

Don't miss this opportunity! Apply now and join our team.