Cloud Security Engineer

Nice to Meet You We are Dropsuite, a NinjaOne Company

We are looking for a Cloud Security engineer, well versed with Security engineering practices. You will report to the Director of Security and work closely with the Site Reliability Engineering team.

In your role as a senior member of the engineering team, you will be responsible to set standards for security across the engineering team and implement key security frameworks / libraries for the rest of the engineers to leverage. You will conduct trainings and orient the engineering team towards these industry best practices. You will be directly involved in assessing security gaps continuously and creating a security roadmap with product and engineering leadership.

This Cloud Security Engineer role is ideal for someone with 8 years of experience, with extensive experience in rolling out secure coding practices and security engineering on cloud platforms.

Work Arrangement

• Full-time position
• Hybrid work model (2 days per week in the office)
• Monday to Friday, 5-day work week (flexible work schedule)
• Eligible to reside and work in Bandung (Indonesian citizenship only)

This position is open exclusively to candidates who reside in and are authorised to work in
Indonesia.
Only shortlisted candidates will be contacted.

Key Accountabilities

Infrastructure Security Architecture

• Collaborate with Cloud SRE (AWS/GCP) and Private Infra SRE (VMware, Linux/Windows) teams to harden infrastructure and cloud environments.
• Secure critical workloads on AWS services (EC2, ECS, S3, RDS, VPC, IAM) and private infra components (VMware, LVM, PostgreSQL clusters, ZFS).
• Define and enforce secure configurations for Linux, Windows Server, and database environments (HA, replication, backup, encryption, logging) and Elasticsearch/Opensearch installations.
• Translate HA vs. Backup strategies into actionable security and recovery architectures.

Security Technology Integration

• Deploy and manage CSPM, CNAPP, SIEM/SOAR, EDR/MDR, PAM/IAM, Firewalls/WAF, DDoS protection, and Vulnerability Management tools.
• Use these platforms to trace, report, and investigate ongoing or suspected breaches, correlating events across multiple control points.

Data & Platform Security

• Enforce security and for storage systems (e.g., LVM, EBS, S3) including encryption, access control, data integrity and lifecycle management.
• Review PostgreSQL and other databases for security gaps, ensuring proper replication, logging, TLS, and account management.
• Harden OS environments using CIS benchmarks, custom hardening baselines, and configuration management tooling.

Network & Perimeter Defense

• Design and implement VPC and subnet segmentation, firewall policies, WAF rulesets, proxy controls, and zero trust network access (ZTNA) patterns.
• Collaborate on VPN, DNS, routing, and endpoint isolation practices.
• Drive cleanup and optimization of legacy firewall, VPN, IAM, and user access profiles.

Governance, Risk, Privacy & IR

• Contribute to compliance mapping for SOC 2, ISO 27001, GDPR/PDPA, and internal policies.
• Drive security incident response playbooks, root cause analysis, and forensics investigations.
• Integrate visibility and detections across cloud and on-prem workloads using SIEM, CNAPP, and EDR tools.
• Continuously assess gaps in logging, telemetry, and detection use cases to evolve monitoring strategy.

Qualifications and Competencies

• 8+ years in infrastructure or cloud security in hybrid environments (cloud + on-prem).
• Tertiary education or experience in relevant field.
• Certifications such as CISSP, CEH, AWS Security specialist or OSCP is a must.
• Expertise in security frameworks like CIS v8 and security coding practices like OWASP
• Expert in securing AWS services (EC2, S3, RDS, IAM, VPC) and managing controls in GCP and/or VMware.
• Strong understanding of OS security, VMware, Network security, Storage & database security, IAM & PAM, Elasticsearch/Opensearch.
• Experience deploying and operating SIEM/SOAR, CSPM/CNAPP, WAF/DDOS, EDR, vulnerability scanners.
• Experience with cloud-native HA/DR vs. snapshot/backups from a business continuity/security lens.
• Experience using tools to detect misconfigurations, analyze event correlation, and respond to incidents.
• Cloud DevSecOps tooling: Terraform, GitHub Actions, Sentinel policies, OPA.
• Hands-on with IAM anomaly detection, cloud workload profiling, or container runtime protections.
• Understand the importance of protecting PII data and differentiating security and privacy implementations for PII and non-PII data.
• Able to work cross-functionally across security, engineering, infrastructure, compliance, and SRE teams.
• Passionate about automation, security-as-code, and measurable outcomes.
• Calm and effective during incident response; highly autonomous and accountable.

Why Join Us

At Dropsuite, now proudly part of NinjaOne, we are on a mission to safeguard business information and help businesses stay in business. We are a global, fast-growing, partner-centric company building secure, scalable, and highly usable cloud backup technologies for businesses of all sizes. Today, we perform billions of backups daily for organizations across more than 100 countries.

As we enter an exciting new chapter with NinjaOne—a leader in endpoint management, security, and IT automation—our combined strengths enable us to drive even greater impact, innovation, and global scale. Together, we are building a world-class platform that empowers IT teams with simplicity, performance, and reliability.

At our core, we are a team of hungry owners: we are tenacious in our pursuit of excellence and take full ownership in everything we do. We are deeply customer-focused, collaborative, and solutions-driven. We play as a team—respecting, supporting, and elevating one another every step of the way.

Join us as we shape the future of IT and data protection—powered by passion, purpose, and the spirit of ownership.

Rewards That Go Beyond

• Competitive compensation
• Health insurance for you and your dependents
• Social Security (BPJS Ketenagakerjaan)
• Hybrid work model
• 12 Days of Annual Leave
• Entitled to Indonesia Public Holidays
• Other leave benefits, such as Wedding leave
• Free lunches in office
• Growth opportunities
• Work in a global company with meaningful work, highly skilled colleagues and an amazing culture

Diversity and Inclusion Statement

Dropsuite is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status.

As part of our recruitment process, we may collect personal data to support hiring-related activities such as screening, assessment, and communication. This information is collected solely for recruitment purposes and handled in accordance with applicable data protection and privacy regulations. Your data will be treated with strict confidentiality and used only to facilitate your application with us.

Your Career Growth Starts Here. Apply Now