Cloud Security Engineer

Subang Jaya, Malaysia
Tech – Information Security /
Permanent, Full-time /
Ninja Van is a late-stage logtech startup that is disrupting a massive industry with innovation and cutting edge technology. Launched 2014 in Singapore, we have grown rapidly to become one of Southeast Asia's largest and fastest-growing express logistics companies. Since our inception, we’ve delivered to 100 million different customers across the region with added predictability, flexibility and convenience. Join us in our mission to connect shippers and shoppers across Southeast Asia to a world of new possibilities. 

More about us: 
- We process 250 million API requests and 3TB of data every day.
- We deliver more than 1.5 million parcels every day.
- 100% network coverage with 1000+ hubs and stations in 6 SEA markets (Singapore, Malaysia, Indonesia, Thailand, Vietnam and Philippines), reaching 500 million consumers.
- 600,000 active shippers in all e-commerce segments, from the largest marketplaces to the individual social commerce sellers.
- Raised more than US$500 million over five rounds.

We are looking for world-class talent to join our crack team of engineers, product managers and designers. We want people who are passionate about creating software that makes a difference to the world. We like people who are brimming with ideas and who take initiative rather than wait to be told what to do. We prize team-first mentality, personal responsibility and tenacity to solve hard problems and meet deadlines. As part of a small and lean team, you will have a very direct impact on the success of the company. 

Roles and responsibilities

    • You would help us improve the cyber risk management practices by performing architecture and infrastructure risk assessments, identifying and analyzing security risks, recommending appropriate mitigation options
    • Configure endpoints protection and detection tools our security tools (EDR, SIEM, DLP, etc.), building new detection rules, reviewing and updating existing rules
    • Build and Deploy WAF configuration. 
    • Build rules and configure tools to improve protection and detection capabilities across containers, servers, APIs and endpoints.
    • Maintain our hardening standard and ensure the deployment of hardened resources by creating hardening scripts for servers, laptops and containers.
    • Script rules to Monitor our cloud infrastructure
    • Conduct configuration reviews and identify security flaws. Advice and work with the infrastructure team to remediate the security flaws
    • Build our cloud security automation capabilities (Infrastructure as code, continuous scanning, identification of security flaws) by configure GCP, SCC, SIEM, etc
    • Automate incident response capabilities


    • Bachelor’s or Master’s degree in Cyber Security, Information Technology, Computer Science, or related field.
    • Six or more years of relevant work experience in Cyber Security, including Cloud security, SIEM, Security Solution design experience.
    • Good bash/python scripting skills
    • Working experience with cloud security aspects
    • Solid understanding of Digital Native Technology systems, applications, networks, databases, cloud architectures and how security can be assured in them.
    • Excellent interpersonal and organizational skills with the ability to communicate effectively with both technical and non-technical teams.
    • Strong documentation skills: we need clear and well-structured knowledge bases/assessment reports/policies

Submit a job application

By applying to the job, you acknowledge that you have read, understood and agreed to our Privacy Policy Notice (the “Notice”) and consent to the collection, use and/or disclosure of your personal data by Ninja Logistics Pte Ltd (the “Company”) for the purposes set out in the Notice. In the event that your job application or personal data was received from any third party pursuant to the purposes set out in the Notice, you warrant that such third party has been duly authorised by you to disclose your personal data to us for the purposes set out in the the Notice.