Company Description

Traveloka is a technology company based in Jakarta, Indonesia. Founded in 2012 by ex-Silicon Valley engineers and aims to revolutionize human mobility with technology. Today Traveloka is expanding its reach by operating in 7 countries and experimenting with new endeavors that will create large impact in the markets and industries we touch. 

Job Description

 

  • Perform risk assessment, threat modeling, and gap analysis  for ensuring security compliance for various products and platforms

  • Review and define security architecture for network and infrastructure, identity and access, data, and data flow

  • Create security guidelines for different layers of the stack, and perform training to teams

  • Establish checklists for design review and code review process for detecting and preventing security risks early

  • Improve development, testing, and deployment process to take into account screening and mitigation of security risks

  • Decide and design tools and scripts to automate security risk detection, including code static analysis

  • Help with external security audits, and security compliance for certain national jurisdictions

  • Be the steward of software security in the company, and keep knowledge about software security up to date

 

 

 

Qualifications

 

  • At least 8 years experience in software security

  • Knowledge of cryptography, public key - infrastructure, network security, web security, mobile security, identity and access management

  • Knowledge with Unix operating system and cloud infrastructure

  • Knowledge with security frameworks and threat modeling frameworks

  • Experience in software engineering is a plus

  • Curiosity and passion in researching about security best practices, tools, and security-related innovation

  • Good communication and writing skills