Search by job, company or skills

noraa & co.

Senior IT Security Engineer

noraa & co.
Indonesia
3-5 Years
Save
  • Posted 9 hours ago
  • Be among the first 10 applicants
Early Applicant

Job Description

About The Job

Noraa & Co. is supporting a confidential large-scale company in Indonesia that is currently strengthening its technology organization as part of a major business and digital transformation.

The company operates in a business-critical environment where cybersecurity, infrastructure resilience, secure application environments, and operational continuity are essential to supporting large-scale daily operations.

We are looking for a Senior IT Security Engineer who will take a key role in strengthening the company's cybersecurity posture through penetration testing, vulnerability management, threat detection, incident investigation, technical hardening, and security improvement across infrastructure, applications, networks, endpoints, and data environments.

This role is suitable for a hands-on cybersecurity professional with strong technical capability in security engineering, internal penetration testing, SIEM/EDR management, vulnerability assessment, threat hunting, and incident response.

Position Overview

As a Senior IT Security Engineer, you will be responsible for identifying and assessing security vulnerabilities, strengthening technical security controls, improving detection capabilities, and supporting incident response across the company's technology environment.

You will work closely with Infrastructure, DevOps, Application, Database, and other technology teams to ensure vulnerabilities are properly prioritized, risks are mitigated effectively, and systems are configured in accordance with cybersecurity standards, company policies, and security best practices.

Key Responsibilities

  • Penetration Testing & Security Assessment
    • Conduct scheduled penetration testing on internal infrastructure, applications, and networks to identify security vulnerabilities.
    • Prepare clear security findings and practical remediation recommendations.
  • Vulnerability Management & Remediation Coordination
    • Manage routine vulnerability scanning activities across the company's technology environment.
    • Coordinate patching, remediation, or technical mitigation with Infrastructure, DevOps, and related teams.
  • SIEM, EDR & Threat Detection
    • Manage and optimize SIEM and EDR rules to accurately detect potential threats.
    • Tune detection logic to improve alert quality and reduce false positives.
  • Threat Hunting & Security Investigation
    • Proactively hunt for hidden threats using log-based analysis and data traffic investigation methods.
    • Analyze data packets, system logs, endpoint behavior, and security telemetry to identify potential attack indicators.
  • Incident Response & Digital Forensics
    • Perform technical investigations during cybersecurity incidents and support rapid containment or resolution.
    • Collect and analyze digital forensic evidence to support incident handling and root cause analysis.
  • Security Hardening & Policy Implementation
    • Provide technical guidance to strengthen the configuration of servers, databases, endpoints, applications, and network devices.
    • Implement and support the company's cybersecurity policies, procedures, and technical security standards.

Qualifications


  • Minimum of 3 years of experience in IT Security, Security Engineering, or Security Operations Center/SOC.
  • Experience in security testing on Android and iOS platforms, as well as securing APIs, microservices, and databases.
  • Strong understanding of the OWASP Top 10.
  • In-depth technical experience in managing SIEM, EDR, and vulnerability management tools.
  • Capable of performing Internal Penetration Testing and Vulnerability Assessments both manually and using tools such as Burp Suite, etc.
  • Able to analyze data packets, system logs, and understand attack techniques based on the MITRE ATT&CK framework.
  • Relevant cybersecurity certifications, training, or professional security qualifications would be an advantage.

Preferred Background


  • Experience working in medium-to-large organizations with complex infrastructure, applications, and security environments.
  • Hands-on exposure to threat hunting, incident response, SIEM/EDR tuning, vulnerability remediation, and internal penetration testing.
  • Familiarity with security frameworks, IT governance, risk management, or compliance-related practices.
  • Experience supporting technology environments with APIs, microservices, mobile applications, databases, and cloud or hybrid infrastructure would be beneficial.
  • Prior experience working closely with Infra/DevOps teams to drive security remediation and secure configuration improvements.

Why Join This Opportunity

This is an opportunity to contribute to a large-scale organization where cybersecurity plays an important role in protecting business continuity, technology operations, and future digital growth.

The role offers exposure to real business-critical systems, complex security challenges, and the opportunity to strengthen cybersecurity capabilities across infrastructure, applications, networks, endpoints, and digital platforms.

As a Senior IT Security Engineer, you will have the opportunity to take ownership of meaningful security initiatives, influence technical remediation, and help improve the organization's overall security maturity.

More Info

Job Type:
Permanent Job
Industry:
Other
Function:
Cybersecurity
Employment Type:
Full time

About Company

noraa & co.

Job ID: 148971745

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Last Updated: 10-06-2026 07:26:37 AM
Homejobs in IndonesiaSenior IT Security Engineer