🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
Cookies & analytics consent
We serve candidates globally, so we only activate Google Tag Manager and other analytics after you opt in. This keeps us aligned with GDPR/UK DPA, ePrivacy, LGPD, and similar rules. Essential features still run without analytics cookies.
Read how we use data in our Privacy Policy and Terms of Service.
🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
StraitsX • Special capital Region of Jakarta, Java, Indonesia
Role & seniority
Stack/tools
Core: Burp Suite, Metasploit, Nmap, Wireshark
Certifications: OSCP or CREST (or equivalent)
Cloud concepts: AWS, GCP, or Azure familiarity
Scripting/automation: Python, Golang, Ruby, or JavaScript (plus)
Top 3 responsibilities
Plan and execute penetration tests across networks, systems, and web/mobile apps
Lead or independently manage engagements from scoping to reporting; produce remediation recommendations
Analyze findings, assess risk impact, and collaborate with development, infra, and security teams throughout the SDLC; support incident response as needed
Must-have skills
Bachelor’s degree in CS, Information Security, or related field
≥2 years hands-on penetration testing/offensive security experience
Experience testing web and mobile applications
OSCP or CREST (or equivalent) certification
Proficiency with Burp Suite, Metasploit, Nmap, Wireshark
Knowledge of OWASP Top 10, NIST, CIS; ability to clearly explain risks to varied audiences
Nice-to-haves
Secure coding practices, code review, SAST/DAST tools
Ability to script/automate (Python, Golang, Ruby, JS)
Cloud security concepts
Experience with CTFs, bug bounty triage, or vulnerability disclosure programs
Location & work type
Jakarta, Indonesia
Full-time role (on-site/home-office options not specified)
About The Role We are looking for a mid-level Security Engineer (Penetration Tester) to join our Security team in Jakarta, Indonesia. You will play a key role in strengthening our security posture by performing hands-on penetration testing, identifying real-world risks, and working closely with engineering teams to drive remediation. This role is ideal for someone who is technically strong, detail-oriented, and eager to continuously sharpen their offensive security skills in a collaborative environment. What You Will Do Plan and execute penetration tests across networks, systems, and web/mobile applications Lead or independently handle penetration testing engagements from scoping to reporting Analyze vulnerabilities, assess risk impact, and produce clear, actionable remediation recommendations Collaborate with developers, infrastructure, and security teams to address findings throughout the SDLC Support security incident response activities when required Continuously research emerging threats, attack techniques, and testing methodologies Contribute to improving internal penetration testing tools, playbooks, and processes What We Are Looking For Bachelor’s degree in Computer Science, Information Security, or a related technical field Minimum 2 years of hands-on experience in penetration testing or offensive security roles Proven experience conducting penetration tests for web and mobile applications
Certification: OSCP or CREST (or equivalent recognized offensive security cert) Strong proficiency with tools such as Burp Suite, Metasploit, Nmap, and Wireshark Solid understanding of security standards and frameworks (OWASP Top 10, NIST, CIS) Strong analytical skills with the ability to clearly explain security risks to technical and non-technical stakeholders Experience with secure coding practices, code review, or SAST/DAST tools is a plus Ability to script or automate using Python, Golang, Ruby, or JavaScript is a plus Familiarity with cloud security concepts (AWS, GCP, or Azure) is a plus Experience with CTF competitions, bug bounty triage, or vulnerability disclosure programs is a plus