At Stockbit & Bibit, we prioritize the security of our applications and the data of our users. As Cloud Security Engineer, you will help safeguard our cloud infrastructure and ensure the security of sensitive financial data. In a fast-paced, highly regulated fintech environment, this role is critical to maintaining secure systems that our investors and users can trust. You’ll play a key role in designing, implementing, and maintaining cloud security strategies that protect our platform end-to-end.
Responsibilities
- Design and implement secure cloud architecture (AWS, GCP, or Azure) tailored to fintech needs.
- Configure and harden cloud services including IAM, VPCs, KMS, firewalls, and storage.
- Develop and maintain threat detection and response systems (e.g., SIEM, IDS/IPS) in the cloud.
- Conduct regular cloud security audits, penetration tests, and access reviews.
- Define and enforce cloud security policies in compliance with industry standards (OJK, ISO 27001, PCI-DSS, etc.).
- Collaborate with DevOps, backend, and compliance teams to ensure security by design.
- Educate internal teams on cloud security best practices and secure coding.
- Investigate and respond to security incidents and lead mitigation efforts.
Requirements
- Minimum 3 years of experience in Cloud Security, Security Engineering, or a related role.
- Strong understanding of cloud platforms (especially AWS or GCP) and their security features.
- Experience with container and infrastructure security (e.g., Docker, Kubernetes, Terraform, CloudFormation).
- Solid knowledge of security principles like zero trust, least privilege, threat modeling, and network segmentation.
- Hands-on experience with SIEM tools, log monitoring, and vulnerability scanners.
- Familiarity with data protection regulations and security frameworks in fintech (e.g., OJK, ISO 27001, GDPR)
Nice to Have:
- Security certifications such as AWS Certified Security – Specialty, GCP Professional Cloud Security Engineer, CISSP, CEH, or CISM.
- Experience in SOC operations or incident response.
- Proficiency in scripting languages for security automation (e.g., Python, Bash).
Benefits
- Capital market sharing session
- Self development program
- Health insurance benefits
- Well being and counseling program