Get to know our Team:
When you're an engineer at Grab, you are part of the heart and soul of the company. Our passion is anchored in the work that we do, and this is reflected in the impact we make on millions of lives on a daily basis. Our team is empowered by creating outstanding services and tools that serve millions of passengers, driving partners, and fellow Grabbers.
You’ll be part of a team that is responsible for the Security of Grab’s Cloud platform which is one of the largest deployments in the region.
Get to know the role:
We are looking for a Network Security Engineer to take a lead on implementing network security solutions and practices. You’ll be faced with complex problem-solving and hands-on testing opportunities. We believe a successful candidate has a deep understanding of cloud network engineering, foundational networking technologies, infrastructure automation, operating/designing/deploying network security systems, but if you believe you have what it takes then we’d love to hear from you either way.
The day-to-day activities:
Develop network security infrastructure to support a variety of large scale systems and services
Use your expertise of network protocols, core network and system security principles along with your up-to-date understanding of modern attack patterns and methods to drive security into tools used at Grab
Perform regular Threat Modeling and VAPT through manual and automated methods. Provide in-depth threat analysis with remediation actions.
Documenting and disseminating network security standards baseline, refine operational procedure and constantly think pro-actively and with innovation
Be responsible for the design, implementation, and operation of the WAF, DoS protection, Bot protection, Cryptography, firewall service.
Monitor and evaluate security controls throughout the multi-cloud hybrid environment and implement security enhancements.
Ability to create, develop, and deploy security solutions, infra as code, docker & Kubernetes, EKS/ECS, CI/CD pipelines. Integrating and automating the cloud security best practices.
Build relationships with engineering teams to drive Grab products to a mature security state
The must haves:
3+ years of professional experience in any three of areas; network security, cloud security, application security, security engineering experience
3+ years of experience with complex system, network, or service architecture and design reviewing and threat model
Knowledge of Network Security architecture best practices and experience designing network protection solutions
Understanding of other networking concepts (TCP/IP, Routing, LAN switching, BGP and OSPF)
Experience implementing enterprise WAF solutions
Experience with multiple programming languages (such as Ruby, Shell, Python, Go) for both tool development and automation
Ability to perform automation using Terraform/Ansible/Chef/Puppet, Docker/Kubernetes, and any one CI tools (e.g. Jenkins, Gitlab, Travis CI etc.)
Grab