SRE - Security
职缺描述
- Support definition of Secure SDLC standard to include security architecture, design, and coding requirements for infrastructure, application, and data to align with application security maturity model and adopt a shift-left approach for security.
- Evaluate various application security tools, including SAST, DAST, SCA, IAST, and Pen Testing, and operationalize security tools for integration with CI/CD.
- Explain and interpret the vulnerability report items to development staff.
- Perform application testing and review security test results from scans and penetration testing to identify possible vulnerabilities that may be exploited and propose remediation solutions or mitigation controls.
- Contribute and set the MIFX Engineering technical standards, including cloud security, security operations, DevSecOps, security automation, and security architecture.
- Interface with engineering team to champion and ensure the adoption of security standards and remediate security gaps.
- Design, implement, and maintain a secure and reliable cloud infrastructure platform for delivering MIFX Services.
- Manage complex and/or critical design reviews and proactively look for opportunities to improve security engineering capabilities.
- Implement security technical solutions and process improvements.
- Create tools for automating deployment, monitoring and operations of the overall security platform
职务需求
- 3+ years of relevant experience operating and maintaining production systems in a Linux and public cloud environment (AWS, Alibaba Cloud, etc).
- A recognized security expert in multiple specialty areas, with cross-functional team experience.
- Experience operating and maintaining production container cluster.
- Experience working in high-performance or distributed systems.
- Comfortable with Python / Go / PHP or another high-level programming language.
- 3+ years of relevant experience developing and maintaining production systems/applications.
- Ability to perform automation using Terraform/Ansible, Docker/Kubernetes, and any one CI tools (e.g Gitlab, etc).
- Comfortable coding in at least one high-level programming language - JavaScript, PHP, Python or Golang for scripting and automation.
- Good working knowledge of Cloud Security and understanding of Security Operations, DevSecOps, or Security Automation.
关于我们
MIFX is a pioneer trading platform in Indonesia that is backed by a 22 years old market leader in the industry, Monex Investindo Futures. We are a futures broker facilitating forex, commodities, and index trading that is fully regulated and complies with BAPPEBTI regulations.
MIFX focuses on making the trading process #SemudahItu by prioritizing easy access, trading education, and providing the lowest prices to start trading where traders can buy 0.01 micro lots from our platform.
Led by a solid marketing-technology team that leverages lean analytics and agile product development with a vision of creating the most seamless trading experience for the millennial generation through the MIFX platform, we are proud to continuously growing our volumes by improving our customer experience and people's experience for sure to grow with us.
We are looking for more talents to create a positive impact.
#SemudahItu join us and be part of Indonesia's next largest fintech company!
Are you ready to be a part of MIFX for the upcoming “big wave”?
团队
