TRYremote

Remote software development jobs

ShopBack is hiringSenior Security Engineer

Full Time
Posted 20d ago
Our Journey
ShopBack was born one night in 2014 when co-founders Henry and Joel were toying around (with entrepreneurial ideas) in Henry's car, sparking the concept of earning Cashback while shopping online. The ShopBack Group has now grown to become the leading shopping, rewards, and payments platform in Asia-Pacific, with 45 million shoppers across 12 markets and more than half a million transactions powered for 20,000 partners daily. Fresh off its debut in the European market, ShopBack is seeking thrill-seekers to join the journey of building The World's Most Rewarding Way to Shop. Get ready for the ride of a lifetime: a blend of startup spirit woven into a solid business foundation.

We are seeking a skilled and dedicated Security Engineer to join our team. The Security Engineer will be responsible for ensuring our information systems' integrity, confidentiality, and availability. This role involves designing, implementing, and maintaining security protocols, monitoring potential security breaches, and responding to incidents to protect our organization’s data and infrastructure.

Your Adventure Ahead

    • Design and Implementation:
    • Review Design and architecture documents and threat model the same along with engineering teams.
    • Build and implement proactive security solutions like libraries, SDK, etc to make our systems and services secure-by-default. 
    • Develop and implement security policies, protocols, and procedures. 

    • Testing and Audit:
    • Understand information security concepts & be able to conduct vulnerability assessments and penetration testing on Web, Mobile, Infra, REST APIs.
    • Do secure code reviews using tools. Should be able to write custom code review rulesets.
    • Build and maintain toolings and processes to support the DevSecOps pipeline.
    • Should be able to recommend solutions or compensatory controls to fix security issues or reduce the risk to acceptable extent.
    • Develop quick proof of concept to test hypotheses and explain exploits.
    • Perform and support audits by providing relevant information and evidence.
    • Perform third-party risk assessment when needed.

    • Monitoring and Response:
    • Monitor and setup alerting on WAF and application and cloud logs. 
    • Respond to security incidents, conducting thorough investigations and providing mitigation strategies.
    • Develop a working playbook for incident response.

    • Collaboration and Training:
    • Work with IT and development teams to ensure secure design and deployment of new technologies and systems.
    • Provide training and guidance to staff on security best practices.
    • Collaborate with external partners and vendors on security matters.

    • Documentation and Reporting:
    • Maintain detailed documentation of security incidents, solutions, and outcomes.
    • Prepare and present security reports to management.
    • Stay current with emerging security trends, threats, and technologies, and provide recommendations for improvements.

Essentials to Succeed

    • 4+ years of experience in information security or a related role.
    • Strong knowledge of security principles, techniques, and technologies.
    • Excellent in vulnerability management and reporting.
    • Proficiency in scripting and automation (e.g., Python, Bash etc).
    • Familiarity with regulatory requirements and standards such as ISO 27001, GDPR, PDPA would be a plus
    • Relevant certifications to support your skills would be a plus.
    • Excellent problem-solving skills and attention to detail.
    • Strong communication skills and ability to work collaboratively.
    • Experience working on any cloud technologies and securing the same. (AWS, Azure, GCP).
    • Knowledge of DevSecOps practices.
    • Knowledge of incident response and forensic analysis.
ShopBackers' DNA
Grit - We tackle all challenges head-on, working together to solve problems and achieve success.
Hunger - We value hard work, and having relentless drive.
Speed - We move fast and have a bias for action, all to deliver maximum impact.
Impact - We focus on results, always aiming for the best possible outcomes and timelines.
Growth - We embrace a growth mindset, constantly striving to learn, improve, and excel in our roles.

What's in it for ShopBackers
Career progression paths and opportunities to take on greater challenges that help you realise your ambitions.
Be part of a winning team on a journey to global scale.
Competitive compensation based on your performance.
Work-From-Anywhere benefit to enable you to thrive personally and professionally.
Candid, open, and collaborative culture where feedback is valued, for everyone to grow and improve every day.
Apply for this job

Something went wrong.