VP-Head of Offensive Security

Head Quarter - Jakarta

Senior Manager and Above

Permanent

IT

16 February 2024

Lead and oversee all offensive security operations, ensuring advanced threat detection, penetration testing, and vulnerability management across IT and telecommunication infrastructures as well as cloud infrastructure.

• Red Team Lead: Plans and orchestrates simulated cyber-attacks for IT, Telco and Cloud.
• Penetration Testers: Conduct scheduled and ad-hoc cyber attacks on all IOH technology assets to discover security vulnerabilities, perform and validating the findings including monitoring and follow up the remediation process.
• Threat Hunters and Intelligence: Proactively search for vulnerabilities before theyre exploited.
• Digital forensics Experts: Investigate breaches to understand the cause and impact including the how, when, who and what.
• Automation: Automated investigation and Remediation
• Supporting secure coding implementation

Qualifications:

• Minimum bachelor’s degree (Information Technology/ Electrical Engineering/Telecommunication Engineering, Computer Science, Communications, Marketing, Information Security, Business, Technical), master’s degree preferred.
• C|PTE - Certified Penetration Testing Engineer.
• C|PTC - Certified Penetration Testing Consultant
• C|EH - Certified Ethical Hacker V12
• Security certificates such as OSCP, CISSP, CISA, CISM, GIAC, CISA, SANS, and ISO 27001 Lead Implementor/Lead Auditor, etc.
• Familiar with OWASP Top 10 Web and API
• Familiar with XML and JSON data format, HTTP protocol, and REST API
• Ability to analyze and identify actions to be taken.
• Honesty and high-integrity character
• Working well under preasure
• Good communication and influence skill
• Security Risk Management Certification
• Strong understanding of all Information Security Domains
• Sound understanding of businesses supported and security principles and policies.
• Knowledge of network, system, and application monitoring technologies
• Exemplary networking and negotiation skills
• Education for Security Risk

Experience:

• 10 years with expertise Extensive experience in offensive security, ideally in IT and telecommunications.
• Experience in a leadership or offensive role is preferred.
• Familiarity with Security Tools and Threat Intelligence Platforms.

Skills:

• Information System Management
• Operational Management
• Enterprise Risk Management
• Software Engineering
• IT & Telco Security Management
• Data Knowledge
• Strong verbal and written communication skills (fluency in English is required)
• Having basic knowledge of risk mitigation and information security theories, techniques and principles.
• Good communication skills both writing and verbal to be able to work together with all employees in the company.
• Ability to convey message in clear, concise and simple way to various employees in the company.
• Ability to deliver and develop presentations in front of different audiences and answer their questions.
• Ability to manage, organize and do multiple tasks to meet tight deadlines.
• Have integrity, confidentiality and independence.
• Ability to move forward and flexibility under various environment that continue to change.
• Databases and operating systems
• Information security fundamentals
• Data security fundamentals and best practices with prior responsibilities of protecting information assets.
• NIST
• Secure coding principles
• COBIT
• Security technologies
• Best practices and industry standards with prior responsibilities of protecting information asset