Lead Security Engineer, Red Team & Threat Intel
On-site · Jakarta, Jakarta, Indonesia or Kuala Lumpur, Kuala Lumpur, Malaysia
Job Summary
Lead Security Engineer, Red Team & Threat Intel role based in Kuala Lumpur, Malaysia or Jakarta, Indonesia. You will report to the Red Team & Threat Intel team leader and perform complex red team operations across cloud, CI/CD, endpoint, identity, application, and AI environments. You will design realistic attack simulations, develop offensive tooling, apply threat intelligence to Purple Team planning, and translate findings into practical engineering actions to improve detection, response, hardening, and risk prioritisation. You will lead end-to-end red team operations with the Blue Team, develop command-and-control tooling and payload delivery mechanisms, red team AI systems and AI-assisted workflows, and collaborate with defenders, platform teams, and the Vulnerability Management team. You will contribute to the Red Team and Threat Intel roadmap, produce Threat Intel assessments from incidents observed in the wild or internally, and advise leadership on likely impact and next actions. The role emphasizes building tools, testing assumptions, and scaling offensive security work responsibly across diverse environments including cloud, AI/ML platforms, and CI/CD pipelines. Life at Grab highlights include comprehensive insurance, flexible work arrangements, and an inclusive culture.
Required Qualifications
- 5+ years of experience in offensive security, red teaming, security engineering, exploit development, cloud security, or adjacent technical security roles
- Hands-on experience developing command-and-control tooling, implants, loaders, payloads, or offensive automation
- Experience assessing CI/CD systems, source control platforms, build pipelines, artefact repositories, secrets handling, and deployment workflows
- Firm knowledge of cloud environments, including identity, networking, logging, container platforms, and common privilege escalation paths
- Experience assessing AI-enabled products, internal AI platforms, or agentic systems in adversarial scenarios, and using AI tools to improve security research, workflows, and output quality
- Experience producing or using Threat Intel to connect external incident trends, adversary tradecraft, and internal security signals to practical security decisions
- Knowledge of the major 3 operating systems (Windows/Linux/macOS), endpoint internals, enterprise management, and defensive controls
This role has closed. Sorce can match you with similar open roles and apply on your behalf.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.