It Security Engineer [Midtrans]

Job Description:
A Security Engineer in Midtrans will be joining a team of outlaws that will diligently break our system. You will conduct formal tests on web-based/web-service applications, networks, and other types of computer systems on a regular basis. You will work on physical security assessments of servers, computer systems, and networks. You'll be expected to evaluate the security of wireless networks, databases and software development.


Roles & Responsibilities:


Conduct application security testing prior to deployment Conduct application penetration testing in regular basis Provide technical solution for IT operation and software development team to mitigate security and compliance related findings Conduct scheduled security activity based on ISO27001 and PCI-DSS framework Maintain an up to date information on newest security vulnerability and document plan on mitigation process Create report on security violations and/or security findings Minimum Qualifications:
Have a working knowledge of low-level network protocols (e.g. HTTP, IPv4, TCP, UDP, ICMP, Ethernet, and 802.11) Demonstrate good communication skills Have experience with one the following exploitation tools: Kali, Metasploit, Nmap, Wireshark, and Ettercap Possess an understanding of computer exploitation technologies and techniques Have experience conducting penetration tests Able to map security requirements to the test environment and vice versa Strong experience with documenting test environments