Description
About Daraz
Founded in 2015, Daraz is South Asia’s leading e-commerce platform in Pakistan, Bangladesh, Sri Lanka, Nepal and Myanmar. It empowers more than 100,000 active sellers with world-class marketplace technology to reach the fast-growing consumer class in a region of 500 million people. Through Daraz Express and Daraz Pay, it operates the most efficient and digitalised logistics and payments infrastructure in its markets. Daraz’ vision is to be a champion of South Asia serving 100 million customers and businesses by 2030.
For more information, please visit www.daraz.com
Your responsibilities include:
• Identify existing threats in the organization's current security posture.
• Monitor SOC and WAF controls and respond to alerts
• Design new rules and enrich existing rule engines to better detect and mitigate attack.
• Utilize threat intelligence to mitigate any potential data threats and defend data.
• Accountable for processing, organizing, and analyzing incident indicators
• Collaborate with infra and tech and dev teams to provide/train them on best security practices.
• Must know how to work with or develop own APIs in order to make programs and systems interact with each other to bring high levels of automation.
You would best fit this role if you:
• Bachelor’s Degree in Cyber Security, IT or Computer Science; Master’s Degree with majors in Information Security / Cyber Security preferred.
• Good to have certifications: CEH: Certified Ethical Hacker, CISSP: Certified Information Systems Security Professional, CompTIA CySA+ : Cybersecurity Analyst, OSCP.
• Minimum 03+ years experience in Information & Cyber Security at top notch – digital first – companies
• Past experience from a Managed Security Services Provider or in-house Security Operations Center is a plus
• Developed and implemented new cybersecurity use cases for SIEM
• Experience in working with Cloud infrastructure, Google Cloud Platform, etc
• Experience in endpoint protection and response solutions
• Experience in networking and network security, such as firewalls, IDS/IPS, and network traffic analysis tools
• Skills in incident and stakeholder management from preparation to post-mortems
• DevOps and Cloud security skills
• Comfortably works in Mac, Linux, and Windows OS
• Continuous Integration / Continuous Deployment knowledge
• Can work with Web APIs and develop integration pipelines
• Coding/Scripting experience (software development, infrastructure as code) All coding or scripting languages welcome
• Knowledge of security operations, network monitoring or analysis, intrusion or anomaly detection analysis, threat hunting, threat attribution assessment
• Knowledge of and experience with web proxy, firewalls, IPS, IDS, mail content scanning appliances, enterprise Antivirus solutions
What we offer:
• International working environment in a start-up setting, and a unique opportunity to learn from the best in e-commerce (Alibaba Group) and business growth
• A platform to learn from Alibaba’s world-leading ecosystem
• Rigorous training and exposure in team management, leadership, business analytics, and operations
• An opportunity to train the next generation of business leaders in the ‘tech’ industry
• Competitive salary and incentive package
Educational Requirements
- Bachelors Degree