Security Engineering Lead (Red Team) at Amartha - ScoutJobs - The AI-curated global job board
Skip to content
Amartha
Posted 7 hours ago

Security Engineering Lead (Red Team)

AmarthaSecurity Engineering Lead (Red Team)

Requirements

8+ years security engineering experience, 3+ years leadership experience, Advanced API, Mobile, and Cloud security knowledge, Proficiency in Python, Bash, or Go, Experience with Metasploit, BurpSuite, and OWASP tools

Skills

PythonGCPPenetration Testing

About the role

About the Company

At Amartha, we empower micro-businesses across Indonesia, enabling growth and equal prosperity. We've supported over 3.6 million entrepreneurs–mostly women–by disbursing IDR 37 trillion in funding. As we step into 2026, Amartha is evolving into a technology-driven financial ecosystem, expanding our reach in lending, funding, and payments.

Responsibilities

  • Lead, mentor, and grow a team of high-performing offensive security engineers
  • Design and execute sophisticated offensive security operations and adversary simulations using frameworks like MITRE ATT&CK
  • Ensure offensive activities align with Indonesia's financial sector guidelines and Personal Data Protection Law (UU PDP)
  • Oversee vulnerability research and penetration testing across web, mobile, API, cloud (GCP), and corporate infrastructure
  • Drive development of custom scripts and automation for offensive security operations
  • Perform threat intelligence activities and proactive investigations to analyze security weaknesses
  • Manage the bug bounty program and enhance security processes through orchestration

Requirements

  • 8+ years in security engineering with 3+ years in a leadership role
  • Advanced knowledge in API Security, Mobile/Application Security, and Cloud Security
  • Advanced knowledge in security adversarial techniques, tactics, and procedures
  • Experience conducting SAST and DAST
  • Proficient in scripting using Python, Bash, or Go
  • Hands-on experience with tools such as Metasploit, BurpSuite, ZAP, OWASP tools, Hydra, Wireshark, Frida, or MobSF
  • Familiarity with Cloud Platforms like GCP or AWS
  • Relevant certifications (e.g., CEH, OSCP, eCPPT, Ejpt) are preferred
ScoutJobs Agent

Get matches like this delivered daily

Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.

Get started — it's free

Security Engineering Lead (Red Team)

Amartha · South Jakarta

Sign up to apply