Security Platform Engineer
Location
Indonesia
Posted
4 days ago
Salary
0
Seniority
Mid Level
Job Description
Security Platform Engineer
Techy Recruiter
Role Description We’re looking for a Security Platform Engineer to build and operate the tools, automation, and infrastructure that make security easier to adopt across Ajaib. You’ll help build the security platform that supports Ajaib’s engineering, cloud, and security teams. This is a hands-on engineering role focused on creating reliable security tooling, automated guardrails, reusable services, and developer-friendly workflows. You’ll work closely with DevSecOps, application security, platform engineering, cloud infrastructure, and incident-response teams to improve security coverage without adding unnecessary friction. You’ll turn security requirements into scalable engineering solutions that protect our applications, cloud environments, identities, data, and software-delivery pipelines. What you’ll do - Build and maintain security platforms, services, tools, and automation used across engineering teams - Develop reusable security capabilities that integrate with CI/CD pipelines, cloud environments, and developer workflows - Automate security testing, vulnerability management, policy enforcement, and remediation processes - Integrate tools for SAST, DAST, software-composition analysis, secrets detection, container scanning, and infrastructure-as-code scanning - Build APIs, services, integrations, dashboards, and workflows that improve security visibility and response - Develop automated guardrails for cloud infrastructure, applications, containers, and deployment environments - Improve the collection, enrichment, prioritisation, and routing of security findings - Reduce false positives and help engineering teams receive clear, actionable security feedback - Build self-service security tools that enable developers to identify and resolve issues earlier - Strengthen secrets management, key management, identity controls, and privileged-access workflows - Support software-supply-chain security across source code, dependencies, build systems, artefacts, and deployment processes - Implement policy-as-code and automated compliance controls where appropriate - Improve security logging, telemetry, monitoring, and alerting across cloud and engineering platforms - Partner with application security and offensive-security teams to automate testing and validation - Support incident-response teams by building investigation, containment, and recovery tooling - Maintain the reliability, availability, performance, and security of internal security services - Create clear documentation, operational runbooks, and engineering standards - Contribute to technical design reviews and security architecture discussions - Track the effectiveness and adoption of security tooling through meaningful metrics Qualifications - Strong experience in security engineering, platform engineering, DevSecOps, cloud engineering, or software engineering - Hands-on experience building internal platforms, tools, services, or automation - Strong programming or scripting skills in languages such as Python, Go, Java, JavaScript, or TypeScript - Experience building and integrating APIs, event-driven workflows, and automated services - Practical knowledge of CI/CD pipelines and modern software-delivery practices - Experience with cloud platforms such as AWS, Google Cloud, or Azure - Strong understanding of containers, Kubernetes, infrastructure as code, and cloud-native architectures - Experience with tools such as Terraform, Docker, Kubernetes, GitHub Actions, GitLab CI, Jenkins, or similar technologies - Familiarity with application-security and cloud-security tooling - Understanding of vulnerability management, secure configuration, secrets management, and identity and access management - Experience working with logging, monitoring, observability, or security-telemetry platforms - Strong understanding of software-engineering practices, including testing, version control, code review, and maintainable system design - Ability to translate security needs into scalable and practical engineering solutions - Strong troubleshooting and problem-solving skills - Ability to work effectively across security, engineering, infrastructure, and product teams - Strong written and spoken English Nice to have - Previous experience within fintech, banking, brokerage, payments, investment, or cryptocurrency platforms - Experience building a security platform or internal developer platform - Familiarity with policy-as-code tools and automated compliance frameworks - Experience with security orchestration, automation, and response platforms - Knowledge of cloud-security posture management, workload protection, or identity-security tooling - Experience working with vulnerability-management platforms and security-data pipelines - Familiarity with message queues, serverless architectures, microservices, and distributed systems - Experience building secure, highly available internal services - Knowledge of frameworks and standards such as NIST, CIS Benchmarks, ISO 27001, or PCI DSS - Certifications related to cloud, Kubernetes, software engineering, or security Why join - High-impact engineering: build security capabilities used across Ajaib’s technology organisation - Meaningful technical challenges: solve problems across cloud, applications, identity, CI/CD, and software supply chains - Security at scale: create platforms and automation that protect the business as it grows - Developer-focused influence: make secure engineering easier, faster, and more consistent - Strong collaboration: work across application security, DevSecOps, offensive security, cloud, and platform teams - Meaningful mission: help protect customers, investments, personal data, and financial transactions Notes to Applicants A few things worth knowing before you apply: - Interviews may include technical and security-engineering discussions. You may be asked to design an internal security service, review an automation workflow, troubleshoot a platform issue, or explain how you would integrate a security control into an engineering environment. - Please do not include confidential information, customer data, source code, credentials, security findings, or proprietary details from current or previous employers during the interview process. - If you need accommodations at any stage of the recruitment process, please let us know in your application.
Related Guides
Related Categories
Related Job Pages
More Platform Engineer Jobs
Lead Power Platform Engineer
MastercardFounded in 1966, Mastercard is a worldwide transaction, payment-processing, and consulting company best known for its line of personal and business credit cards. As an employer, Ma
Our Purpose Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential. Title and Summary Lead Power Platform Engineer Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential Role Overview In this role, you will serve as a key technical partner in delivering enterprise-grade, low-code solutions using Microsoft Power Platform. You will work closely with delivery, platform, and security teams to translate business needs into scalable and compliant technical solutions, while ensuring alignment with governance and architecture standards. Key Responsibilities• Partner with Build Factory and Service Delivery teams to understand business needs, system integrations, and end-to-end workflows, translating requirements into technical execution.• Collaborate with platform, security, and compliance teams to enable responsible and secure low-code adoption across the organization.• Ensure all solutions align with enterprise security, compliance, and governance standards.• Design, build, and optimize Power BI datasets, semantic models, reports, and dashboards for enterprise-wide consumption.• Proactively identify improvement opportunities and propose effective technical solutions.• Lead technical discussions and contribute to architectural decision-making. About You• Strong background in application development, data analytics, and platform engineering.• Proven ability to lead discussions and translate complex requirements into actionable technical solutions.• Strong problem-solving mindset with a continuous improvement approach.• Comfortable working independently or collaboratively within cross-functional teams.• Excellent communication and stakeholder engagement skills. Core Technical Skills Microsoft Power Platform• Power Apps: Canvas apps (responsive design, Power Fx), Model-driven apps• Power Automate: Cloud and desktop flows, approval workflows, error handling and monitoring• Power Pages (Portals)• Dataverse: Tables, relationships, business rules, security roles, and field-level security Data & Integration• SQL Server / Azure SQL• SharePoint Online• REST APIs & JSON• Custom connectors• Microsoft Graph• Excel / CSV data integration Governance, Security & ALM• Environment strategy (Dev / Test / Prod)• Data Loss Prevention (DLP) policies• Solution packaging and deployment• Source control (Git)• Managed vs. unmanaged solutions• Role-based access control (RBAC) Plus Skills (Nice to Have) Azure & Extensibility• Azure Functions• Logic Apps• Service Bus / Event Grid• Azure AD authentication and application registrations Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: - Abide by Mastercard's security policies and practices; - Ensure the confidentiality and integrity of the information being accessed; - Report any suspected information security violation or breach, and - Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
• Deine Arbeitszeiten selbst bestimmen • von zuhause aus arbeiten (remote) • den nächsten Schritt in Deiner Karriere gehen und lernen, wie man Teams leitet und ein Unternehmen führt • einen Arbeitgeber, der Dich leistungs- und ergebnisorientiert bezahlt
• Build and evolve the systems that provision, update, secure, and observe isolated agent execution environments • Design reusable abstractions around queues, locks, background job processing, and service-bus mechanics • Extend and refine the infrastructure-as-code foundation (Pulumi) • Work directly with Linux systems, persistent storage, OS-level disks, container boundaries, permission models, logging pipelines, and runtime debugging • Operate within a small, high-ownership, cross-functional team running weekly delivery cycles
• Design, build, and operate end-to-end data pipelines (batch and near-real-time) that ingest, transform, and deliver data from diverse sources into the enterprise data platform. • Develop and maintain curated data models, marts, and shared datasets in Snowflake and PostgreSQL that meet performance, quality, and access-control requirements for multiple internal customers. • Implement data quality frameworks including automated validation, schema enforcement, reconciliation checks, duplicate detection, and exception reporting with clear audit trails. • Partner with domain teams (e.g., Asset Management, Finance, Operations) to understand data needs, define contracts and SLAs, and deliver platform capabilities that reduce bespoke engineering and manual effort. • Build parameterized, reusable pipeline components and templates that standardize ingestion patterns, transformations, and deployment across the platform. • Establish and maintain data lineage, metadata, and documentation so stakeholders can trace data from source to consumption with confidence. • Collaborate with IT and security to implement role-based access controls, data masking, encryption, and compliance requirements across platform resources. • Own pipeline orchestration, scheduling, dependency management, and alerting using workflow tools (e.g., Airflow) to ensure reliable, recoverable execution. • Improve platform observability through logging, metrics, SLA monitoring, and incident response practices that minimize downtime and data freshness gaps. • Support CI/CD and infrastructure-as-code practices for data platform assets, including version control, automated testing, and safe promotion across environments. • Evaluate and integrate new platform technologies and patterns (e.g., streaming, CDC, data mesh principles) where they improve scalability, cost efficiency, or time-to-value. • Mentor junior engineers and contribute to platform standards, code review practices, and technical design documentation.



