Job Requisition: R-2020-10-0024
Get to know our Team:
The Cloud Security team is responsible for building secure infrastructure and running our infrastructure that runs our security products. We design security solutions which are easy to use and effective in the long run, monitor threats and vulnerabilities on our Infrastructure and provide several levels of protections to our infrastructure. Our team is passionate about the details and we work very closely with a wide range of stakeholders including Engineering Platform and DevOps to make Infrastructure controls .
Get to know the Role:
Head a team that would design and implement security best practices across all Grab infrastructure spanning AWS, Azure, GCP and On-Prem resources.
Setting cloud security strategy and guidelines for running the very large scale infrastructure at Grab and Grab Partners.
Be the specialist consultant on AWS and Azure Security (At least one)
Guide the team to identify and remediate security gaps using industry best practices and automated solutions.
Provide advice on security best practices, and guide teams in developing, adopting and enforcing security standards within the organization.
Implement the latest security tools and techniques that improve the security posture of the organization. Perform periodic reviews and monitor networks, analyze logs and systems in order to prohibit unauthorized use, prevent loss of critical information, and maintain service availability.
Oversee build out of Compliance automation by developing in-house tools as well as evaluating and deploying third party products.
Participate in external and internal audits and bring them to successful completion.
Manage stakeholder communication at all levels of the organization, including Founders, CXOs and Grab leadership team.
The day-to-day activities:
Set security strategy and best practices for cloud security working with the Cloud Security Architects
Managing a team of highly experienced and motivated engineers to achieve the OKRs
Work with engineering teams/SRE/DevOps to create a suitable strategy for adoption of security as part of the CI/CD pipeline and SDLC.
Identify processes that are manual, and improve through automation.
Ensure security best practice is followed at every level and provide solutions to improve existing processes.
Be involved in the design and subsequent implementation of software and service infrastructure
Hire and mentor exceptional DevSecOps engineers
The must haves:
10+ years of experience in the industry with several years of experience in Cloud and Infrastructure Security and managing large scale infrastructure on the cloud.
Strong understanding of Linux and Network security.
Strong foundation and in-depth technical knowledge of security engineering, IAM, security protocols and applied cryptography.
Strong skills in at least one or more scripting/programming language; Perl, Python, Go, Shell, etc.
Passionate about security, enjoy challenges and maintain up-to-date knowledge of available and emerging security threats and various security technologies.
Knowledge of Containers, Kubernetes, Docker Swarm or other cluster management software
Strong awareness of DevSecOps practices and ways of implementing security for a fast paced environment.
Strong understanding of engineering practices and large scale feature development.
Strong interpersonal skills with the ability to communicate and work effectively across the organization.
Nice to Have:
Experience in implementing and managing HIDS/NIDS, FIM, SIEM solutions.
Experience with directory services and single-sign-on solutions.
Experience with vulnerability management, patching automation and understanding of VA/PT techniques
Knowledge of information security standards like ISO 27001, PCI-DSS will be an added advantage
A background in managing development/engineering teams.
Get to know Grab:
Grab is more than just the leading ride-hailing and mobile payments platform in Southeast Asia. We use data and technology to improve everything from transportation to payments and financial services across a region of more than 620 million people. We work with governments, drivers, passengers, merchants, and the community, to solve critical problems in Southeast Asia.
Grab began as a taxi-hailing app in 2012, but we have since extended our product platform to include GrabCar, GrabShare, GrabBike, GrabHitch, GrabExpress, GrabFood, GrabCoach, GrabShuttle, GrabCycle. We recently launched our fintech platform – GrabFinancial, which consists of payments, lending and insurance. Our latest addition is GrabVentures, an in-house incubation platform. We are focused on pioneering new commuting and payment alternatives for drivers and passengers with an emphasis on convenience, safety, and reliability. Currently, we offer services in 8 countries. Our R&D offices are in Singapore, Seattle, Beijing, Bangalore, Jakarta and Vietnam. We aspire to unlock the true potential of Southeast Asia and look for like-minded individuals to join us on this ride.
If you share our vision of driving South East Asia forward, apply to join our team today.