Cloud Infrastructure Security Engineer (SDE 4IC)

📍 Job Overview

• Job Title: Cloud Infrastructure Security Engineer (SDE 4IC)
• Company: Kredivo Group
• Location: Jakarta, Indonesia
• Job Type: Full-Time
• Category: DevOps Engineer
• Date Posted: 2025-07-08
• Experience Level: 5-10 years
• Remote Status: On-site

🚀 Role Summary

• 📝 Enhancement Note: This role requires a seasoned Cloud Infrastructure Security Engineer with a strong focus on GCP and AWS security services to lead projects, design, implement, and maintain robust security posture for Kredivo's cloud infrastructure.

• As a Cloud Infrastructure Security Engineer (SDE 4IC), you will be responsible for enhancing security controls, automating security processes, and ensuring continuous compliance with industry standards across both Google Cloud Platform (GCP) and Amazon Web Services (AWS).

💻 Primary Responsibilities

• 📝 Enhancement Note: This role involves a wide range of responsibilities, from developing and implementing cloud infrastructure security best practices to conducting periodic security assessments and leading vulnerability remediation efforts.

• 📝 Enhancement Note: Your primary responsibilities will include:

  • Developing and implementing cloud infrastructure security best practices for GCP and AWS.
  • Configuring and managing native cloud security services like GCP Security Command Center and AWS Security Hub.
  • Implementing and gatekeeping continuous security monitoring, threat detection, and comprehensive compliance auditing.
  • Defining baselines, implementing, and enforcing security policies across the organization's cloud infrastructure.
  • Designing and deploying secure cloud infrastructure resources using Infrastructure as Code (IaC).
  • Developing robust CI/CD pipelines for IaC deployments and integrating Policy as Code solutions to automate security policy enforcement.
  • Conducting periodic security assessments and leading vulnerability remediation efforts for cloud infrastructure.
  • Collaborating closely with Information Security and Infrastructure Operations teams to embed security seamlessly throughout the software development lifecycle.
  • Staying up-to-date with the latest cloud security threats, technologies, and best practices.
  • Driving infrastructure security initiatives and contributing to the overall infrastructure security strategy and roadmap.

🎓 Skills & Qualifications

Education:

• 📝 Enhancement Note: A relevant degree in Computer Science, Information Technology, or a related field is expected, along with a strong focus on cloud security and infrastructure security.

Experience:

• 📝 Enhancement Note: Candidates should have a minimum of 5 years of experience in cloud security, particularly in infrastructure security.

Required Skills:

• Proven hands-on experience and deep familiarity with GCP Security Command Center.
• Extensive experience with AWS security services, including AWS Security Hub, GuardDuty, Inspector, AWS Config, AWS Service Control Policies (SCPs), and AWS Control Tower.
• Demonstrable expertise and active hands-on experience with Infrastructure as Code (IaC), preferably Terraform.
• Solid understanding and practical experience with Policy as Code principles and implementation.
• Experience with Atlantis for enhanced Terraform collaboration and automation.
• A keen interest in and exposure to security compliance frameworks (e.g., ISO 27001, CIS Framework, NIST SP 800-53, and PCI-DSS).
• Solid understanding of networking concepts, least privilege access control, and data encryption in cloud environments.
• Excellent problem-solving skills and the ability to troubleshoot complex security issues effectively.
• Strong communication and collaboration skills, with the ability to work effectively in a cross-functional team environment.

Preferred Skills:

• Relevant cloud security certifications (e.g., GCP Professional Cloud Security Engineer, AWS Certified Security - Specialty).

📊 Web Portfolio & Project Requirements

• 📝 Enhancement Note: As this role focuses on cloud infrastructure security, a portfolio showcasing relevant projects, security assessments, and vulnerability remediation efforts would be highly beneficial.

• Portfolio Essentials:

  • Case studies demonstrating your experience with GCP Security Command Center and AWS security services.
  • Examples of Infrastructure as Code (IaC) projects showcasing your expertise with Terraform and Policy as Code.
  • Documentation of security assessments, threat detection, and compliance auditing processes.

• Technical Documentation:

  • Detailed explanations of your approach to cloud infrastructure security best practices.
  • Documentation of security policies and their enforcement across cloud infrastructure.
  • Evidence of your involvement in driving infrastructure security initiatives and contributing to the overall security strategy and roadmap.

💵 Compensation & Benefits

• Salary Range: Based on regional standards for experienced cloud security professionals in Jakarta, Indonesia, the estimated salary range for this role is IDR 30,000,000 - IDR 45,000,000 per year. This estimate is based on market research and industry benchmarks for similar roles in the region.

• Benefits: Kredivo Group offers a comprehensive benefits package, including:

  • Competitive health insurance and retirement plans.
  • Generous vacation and leave policies.
  • Opportunities for professional development and career growth.
  • A dynamic and collaborative work environment.

• Working Hours: The standard workweek is 40 hours, with flexible scheduling to accommodate project deadlines and maintenance windows.

🎯 Team & Company Context

🏢 Company Culture

• Industry: Kredivo Group operates in the consumer finance sector, offering instant financing for e-commerce purchases. This role is crucial for maintaining the security and integrity of Kredivo's cloud infrastructure, which underpins its consumer finance products.

• Company Size: Kredivo Group is a growing consumer finance company, providing ample opportunities for professional growth and career advancement within the security team and the broader organization.

• Founded: Kredivo Group was founded in 2019, with a mission to provide seamless and secure consumer financing solutions for e-commerce shoppers.

• Team Structure: The security team at Kredivo Group is composed of experienced professionals dedicated to maintaining the security and compliance of the company's cloud infrastructure. The team works closely with infrastructure operations and software development teams to embed security throughout the software development lifecycle.

• Development Methodology: Kredivo Group employs Agile methodologies, with a focus on continuous integration, continuous deployment, and continuous improvement. The security team works closely with development teams to ensure that security is integrated into the development process from the outset.

• Company Website: Kredivo Group

📈 Career & Growth Analysis

• Web Technology Career Level: This role is an Individual Contributor (IC) position, focusing on technical leadership and expertise in cloud infrastructure security. The ideal candidate will have a proven track record in driving security initiatives and contributing to the overall security strategy and roadmap.

• Reporting Structure: As an Individual Contributor, you will report directly to the Head of Security and collaborate closely with the Information Security and Infrastructure Operations teams.

• Technical Impact: In this role, you will have a significant impact on the security and compliance of Kredivo's cloud infrastructure, directly contributing to the protection of customer data and the integrity of the company's consumer finance products.

• Growth Opportunities:

  • Growth opportunity 1 - Technical Leadership: As an experienced cloud infrastructure security professional, you will have the opportunity to mentor junior team members and contribute to the development of the security team's technical capabilities.
  • Growth opportunity 2 - Architecture and Design: This role offers the opportunity to design and implement secure cloud infrastructure resources, contributing to the overall architecture of Kredivo's cloud environment.
  • Growth opportunity 3 - Industry Recognition: Kredivo Group is a growing consumer finance company, providing ample opportunities for professional recognition and industry-wide visibility in the cloud security space.

🌐 Work Environment

• Office Type: Kredivo Group's office is a modern, collaborative workspace designed to foster innovation and teamwork. The office is equipped with state-of-the-art technology and ergonomic workstations to support the productivity of its employees.

• Office Location(s): Kredivo Group's headquarters is located in Jakarta, Indonesia, with additional offices in other major cities across the region.

• Workspace Context:

  • Workspace aspect 1 - Collaboration: Kredivo Group's office is designed to encourage collaboration and teamwork, with open-plan workspaces and dedicated meeting rooms for team discussions and brainstorming sessions.
  • Workspace aspect 2 - Technology: The office is equipped with high-speed internet, multiple monitors, and other cutting-edge technology to support the productivity of its employees.
  • Workspace aspect 3 - Flexibility: Kredivo Group offers flexible work arrangements, including remote work options and flexible scheduling to accommodate the needs of its employees.

• Work Schedule: Kredivo Group operates on a standard 40-hour workweek, with flexible scheduling to accommodate project deadlines and maintenance windows. The company offers competitive vacation and leave policies to support the work-life balance of its employees.

📄 Application & Technical Interview Process

• Interview Process:

  • Process step 1 - Technical Assessment: The interview process will begin with a technical assessment, focusing on your hands-on experience with GCP Security Command Center, AWS security services, and Infrastructure as Code (IaC) tools like Terraform.
  • Process step 2 - Security Architecture Discussion: You will be asked to discuss your approach to designing and implementing secure cloud infrastructure resources, as well as your understanding of security policies and their enforcement.
  • Process step 3 - Problem-Solving Scenario: You will be presented with a real-world security challenge and asked to demonstrate your problem-solving skills and ability to troubleshoot complex security issues.
  • Process step 4 - Final Evaluation: The final evaluation will focus on your cultural fit and alignment with Kredivo Group's values and mission.

• Portfolio Review Tips:

  • Portfolio tip 1 - Case Studies: Prepare case studies demonstrating your experience with GCP Security Command Center, AWS security services, and Infrastructure as Code (IaC) tools like Terraform.
  • Portfolio tip 2 - Security Assessments: Include documentation of security assessments, threat detection, and compliance auditing processes to showcase your hands-on experience in cloud infrastructure security.
  • Portfolio tip 3 - Security Policies: Highlight your involvement in defining baselines, implementing, and enforcing security policies across cloud infrastructure.
  • Portfolio tip 4 - Security Initiatives: Demonstrate your ability to drive infrastructure security initiatives and contribute to the overall security strategy and roadmap.

• Technical Challenge Preparation:

  • Challenge preparation 1 - Hands-on Experience: Brush up on your hands-on experience with GCP Security Command Center, AWS security services, and Infrastructure as Code (IaC) tools like Terraform.
  • Challenge preparation 2 - Problem-Solving Skills: Review real-world security challenges and practice problem-solving techniques to hone your ability to troubleshoot complex security issues.
  • Challenge preparation 3 - Communication Skills: Prepare to articulate your technical expertise and approach to cloud infrastructure security clearly and concisely.

• ATS Keywords: (Organized by category)

  Programming Languages:

  • Python
  • Bash
  • PowerShell

  Web Frameworks:

  • Terraform
  • Atlantis

  Server Technologies:

  • GCP Security Command Center
  • AWS Security Hub
  • AWS GuardDuty
  • AWS Inspector
  • AWS Config
  • AWS Service Control Policies (SCPs)
  • AWS Control Tower

  Databases:

  • Security compliance frameworks (e.g., ISO 27001, CIS Framework, NIST SP 800-53, and PCI-DSS)

  Tools:

  • Infrastructure as Code (IaC)
  • Policy as Code
  • CI/CD pipelines

  Methodologies:

  • Agile methodologies
  • Continuous integration, continuous deployment, and continuous improvement

  Soft Skills:

  • Problem-solving skills
  • Communication skills
  • Collaboration skills
  • Leadership skills

  Industry Terms:

  • Cloud infrastructure security
  • Infrastructure security
  • Security posture
  • Security controls
  • Security policies
  • Compliance auditing
  • Threat detection
  • Vulnerability remediation
  • Least privilege access control
  • Data encryption

🛠 Technology Stack & Web Infrastructure

• Frontend Technologies: (Not applicable for this role)

• Backend & Server Technologies:

  • GCP Security Command Center
  • AWS Security Hub
  • AWS GuardDuty
  • AWS Inspector
  • AWS Config
  • AWS Service Control Policies (SCPs)
  • AWS Control Tower

• Development & DevOps Tools:

  • Terraform
  • Atlantis
  • Infrastructure as Code (IaC)
  • Policy as Code
  • CI/CD pipelines

👥 Team Culture & Values

• Web Development Values:

  • Web development value 1 - Security Focus: Kredivo Group places a strong emphasis on security, with a focus on maintaining the integrity and confidentiality of customer data.
  • Web development value 2 - User Experience: Kredivo Group is committed to providing seamless and secure consumer financing solutions, with a focus on the user experience.
  • Web development value 3 - Technical Excellence: Kredivo Group values technical excellence and encourages its employees to stay up-to-date with the latest cloud security threats, technologies, and best practices.
  • Web development value 4 - Collaboration: Kredivo Group fosters a collaborative work environment, with a focus on teamwork and cross-functional collaboration.

• Collaboration Style:

  • Collaboration approach 1 - Cross-Functional Integration: Kredivo Group encourages cross-functional integration between security, infrastructure operations, and software development teams to embed security seamlessly throughout the software development lifecycle.
  • Collaboration approach 2 - Code Review Culture: Kredivo Group promotes a code review culture, with a focus on peer programming and knowledge sharing.
  • Collaboration approach 3 - Continuous Learning: Kredivo Group values continuous learning and encourages its employees to stay up-to-date with the latest cloud security threats, technologies, and best practices.

⚡ Challenges & Growth Opportunities

• Technical Challenges:

  • Web development challenge 1 - Cloud Security Threats: Staying up-to-date with the latest cloud security threats and emerging attack vectors is an ongoing challenge for cloud infrastructure security professionals.
  • Web development challenge 2 - Security Compliance: Ensuring continuous compliance with industry standards and regulations can be complex and time-consuming, requiring a deep understanding of security compliance frameworks and best practices.
  • Web development challenge 3 - Automation: Automating security processes and integrating security into the software development lifecycle can be challenging, requiring a strong understanding of Infrastructure as Code (IaC) and Policy as Code principles.
  • Web development challenge 4 - Emerging Technologies: Staying up-to-date with emerging cloud technologies and their security implications is an ongoing challenge for cloud infrastructure security professionals.

• Learning & Development Opportunities:

  • Learning opportunity 1 - Technical Skill Development: Kredivo Group offers opportunities for technical skill development, with a focus on emerging cloud security technologies and best practices.
  • Learning opportunity 2 - Conference Attendance: Kredivo Group encourages its employees to attend industry conferences and events to stay up-to-date with the latest cloud security trends and best practices.
  • Learning opportunity 3 - Technical Mentorship: Kredivo Group offers technical mentorship opportunities, with a focus on knowledge sharing and continuous learning.

💡 Interview Preparation

• Technical Questions:

  • Technical question 1 - GCP Security Command Center: Be prepared to discuss your hands-on experience with GCP Security Command Center and its integration with other GCP security services.
  • Technical question 2 - AWS Security Services: Demonstrate your extensive experience with AWS security services, including AWS Security Hub, GuardDuty, Inspector, AWS Config, AWS Service Control Policies (SCPs), and AWS Control Tower.
  • Technical question 3 - Infrastructure as Code (IaC): Prepare to discuss your expertise with Infrastructure as Code (IaC) tools like Terraform and Atlantis, as well as your approach to Policy as Code principles and implementation.

• Company & Culture Questions:

  • Technical question 4 - Security Culture: Prepare to discuss your understanding of Kredivo Group's security culture and your approach to embedding security seamlessly throughout the software development lifecycle.
  • Technical question 5 - Security Compliance: Demonstrate your solid understanding of security compliance frameworks (e.g., ISO 27001, CIS Framework, NIST SP 800-53, and PCI-DSS) and their application in cloud infrastructure security.
  • Technical question 6 - User Experience Impact: Prepare to discuss your approach to balancing security and user experience in cloud infrastructure security, with a focus on protecting customer data while maintaining a seamless and secure consumer financing experience.

• Portfolio Presentation Strategy:

  • Presentation strategy 1 - Case Studies: Prepare case studies demonstrating your experience with GCP Security Command Center, AWS security services, and Infrastructure as Code (IaC) tools like Terraform.
  • Presentation strategy 2 - Security Assessments: Include documentation of security assessments, threat detection, and compliance auditing processes to showcase your hands-on experience in cloud infrastructure security.
  • Presentation strategy 3 - Security Policies: Highlight your involvement in defining baselines, implementing, and enforcing security policies across cloud infrastructure.

📌 Application Steps

To apply for this Cloud Infrastructure Security Engineer (SDE 4IC) position at Kredivo Group:

• Submit your application through the Kredivo Group careers page.
• Concrete preparation step 1 - Tailor Your Resume: Highlight your relevant experience with GCP Security Command Center, AWS security services, and Infrastructure as Code (IaC) tools like Terraform. Include specific examples of your involvement in driving infrastructure security initiatives and contributing to the overall security strategy and roadmap.
• Concrete preparation step 2 - Prepare Your Portfolio: Prepare case studies demonstrating your experience with GCP Security Command Center, AWS security services, and Infrastructure as Code (IaC) tools like Terraform. Include documentation of security assessments, threat detection, and compliance auditing processes to showcase your hands-on experience in cloud infrastructure security.
• Concrete preparation step 3 - Practice Technical Interview Questions: Review the technical interview questions provided in this enhanced job description and practice your responses to ensure you are well-prepared for the technical assessment and security architecture discussion.
• Concrete preparation step 4 - Research Kredivo Group: Familiarize yourself with Kredivo Group's consumer finance products, security culture, and approach to embedding security seamlessly throughout the software development lifecycle. Prepare questions to ask during the interview process to demonstrate your interest in the company and its mission.

⚠️ Important Notice: This enhanced job description includes AI-generated insights and cloud infrastructure security industry-standard assumptions. All details should be verified directly with Kredivo Group before making application decisions.