Life at Grab
At Grab, every Grabber is guided by The Grab Way, which spells out our mission, how we believe we can achieve it, and our operating principles - the 4Hs: Heart, Hunger, Honour and Humility. These principles guide and help us make decisions as we work to create economic empowerment for the people of Southeast Asia.
Get to know the Team:
You’ll be part of an exciting team that is responsible for the Grab Cyber Defence function. The Cyber Defence team is responsible for threat detection, incident response, threat intelligence, threat hunting, red teaming, insider abuse and insider fraud detection.
Grab Red Team is responsible for simulating adversary attacks against Grab and its subsidiaries. You are expected to perform comprehensive and real-world red-teaming scenarios like breaking into a secured zone while remaining stealthy, and yet be able to continue to identify and exploit network or application misconfigurations.
Unlike traditional enterprise environments, Grab's multi-cloud, microservices and container infrastructure makes it an attractive environment for the attacker. Our job as Red Teamers is to prepare Grab for these attacks via adversary attack simulation and atomic testing.
Get to know the Role:
As a Senior Security Engineer, you are a team leader and responsible for managing a team to simulate adversary attacks against Grab and its subsidiaries. You are responsible for the design, build and leadership of the red teaming capability at Grab. You will build a red team program to proactively identify and drive mitigation efforts to reduce potential threats and strengthen the Grab cyber resilience. You are also expected to perform comprehensive and real-world red-teaming scenarios like breaking into a secured zone while remaining stealthy, and yet be able to continue to identify and exploit network or application misconfigurations. You will be surrounded by smart and driven people who all care about Grab’s mission and focus on cyber security.
The Day-to-Day Activities:
Support the full scope red team engagements through planning, organizing, executing, and reporting.
Perform penetration tests in one or more of the following: Cloud, API, Network, Web, Mobile and social engineering engagement.
Perform targeted, covert red team operation in various technology landscapes with custom tooling to aid infiltration, exploitation and post-exploitation activities.
Develop payloads, scripts and tools that weaponize new concepts for execution, evasion, lateral movement and persistence.
Set up infrastructure needed for the engagements
Research new TTPs that are relevant to Grab threat profile and tech stack.
Take part in joint Purple-Teaming efforts.
Communicate effectively with other red team operators, defenders, stakeholders and senior management.
Develop comprehensive and accurate reports and presentations for both technical and executive audiences.
The Must-Haves:
At least 3 years of offensive security working experience.
Experience in Modern Infrastructure Penetration Testing with a firm understanding of cloud architecture, CI/CD, microservices architecture and Kubernetes/container security.
Experience in Application Penetration testing with a firm understanding of modern web exploitation, modern authentication frameworks and exploit chaining techniques.
Experience in Windows, OSX and *NIX internal security to develop covert persistence mechanisms, modern EDR/EPP evasion techniques and privilege escalation techniques.
Experience in utilizing and customizing post-exploitation frameworks such as Mythic, Cobalt strike, Metasploit, Empire, Covenant, etc.
Past involvement in Red Team Operations, ability to think like an adversary, good situational awareness, generating creative adversarial scenarios and having a knack for operational security (OPSEC).
Programming experience in one or more interpreted or compiled languages: Python, Go, C/C++, C#, PowerShell, Rust.
Experience with social engineering campaigns, firm understanding of various types of phishing attacks, payload delivery mechanisms and email security evasion techniques.
Good interpersonal, organizational, communication and time management skills.
The Nice-to-Haves:
Offensive Security (OSCP, OSCE, OSWE, OSEP, OSED, OSMR), eLearnSecurity (eCPPT, eCPTX, eWPTX, eCMAP), CREST (CRT, CCSAS), CRTO, CRTE, or equivalent.
Past achievements in CTF, Bug bounty or CVEs.
Published offensive/defensive related research.
Experience in Purple Teaming projects and working closely with the Blue Team.
Our Commitment
We recognize that with these individual attributes come different workplace challenges, and we will work with Grabbers to address them in our journey towards creating inclusion at Grab for all Grabbers.
Grab