Lead Security Engineer, Red Team & Threat Intel

Get to Know the Team

Join Grabs Red Team & Threat Intel team which helps improve the security posture of Grabs products platforms cloud environments AI systems and enterprise technology across Southeast Asia.

The team partners with Security Engineering Infrastructure IT and business teams. This partnership enables the team to emulate real-world adversaries identify the highest-impact risks and help Grab strengthen its preventive detective and response capabilities. The Threat Intel function brings external incident trends adversary behaviours and internal improvement opportunities into Grabs security priorities. This helps the team plan intelligence-led Purple Team exercises advise leadership and support risk prioritisation with the Vulnerability Management team. We work with curiosity technical depth and responsibility using offensive security techniques and threat intelligence to make Grab safer for our users partners and Grabbers.

Get to Know the Role

You will report to the Red Team & Threat Intel team leader and perform complex red team operations across cloud CI/CD endpoint identity application and AI environments. You will design realistic attack simulations develop offensive tooling apply threat intelligence to Purple Team planning and turn findings into practical improvements for engineering and security teams.

This role is based in Kuala Lumpur Malaysia or Jakarta Indonesia. You will help shaping Grabs Red Team and Threat Intel capabilities and influence how we use AI and automation to scale offensive security work responsibly. If you enjoy building tools testing assumptions and helping defenders get sharper we will give you the platform to make a regional impact.

The Critical Tasks You Will Perform

• You will lead end-to-end red team operations and intelligence-led Purple Team exercises with the Blue Team. These exercises will emulate realistic adversary behaviour across multiple environments including cloud infrastructure CI/CD pipelines identity systems endpoints and applications.
• You will develop command-and-control tooling implants payload delivery mechanisms and operator workflows for authorised security exercises.
• You will red team AI systems including internal copilots agentic workflows AI-assisted operational tools and MLOps environments.
• You will use AI tools to improve research automation payload development reporting operational planning and analysis of defensive coverage.
• You will translate red team findings and threat intelligence into clear engineering actions. You will partner with defenders platform teams and the Vulnerability Management team to improve detection response hardening security architecture and risk prioritisation.
• You will work with other team members on offensive security tradecraft tool development operational safety documentation and responsible execution of adversary simulations.
• You will contribute to the Red Team and Threat Intel roadmap. Your contributions will involve identifying the latest attack techniques and evaluating new tooling.
• You will produce Threat Intel assessments from security incidents observed in the wild or improvement opportunities identified internally. Additionally you will advise leadership on likely impact priority and next actions.

Qualifications :

What Essential Skills You Will Need

• You will have 5 or more years of experience in offensive security red teaming security engineering exploit development cloud security or adjacent technical security roles.
• You will have hands-on experience developing command-and-control tooling implants loaders payloads or offensive automation.
• You will have practical experience assessing CI/CD systems source control platforms build pipelines artefact repositories secrets handling and deployment workflows.
• You will have firm knowledge of cloud environments including identity networking logging container platforms and common privilege escalation paths.
• You will have experience assessing AI-enabled products internal AI platforms or agentic systems in adversarial scenarios and using AI tools to improve security research workflows and output quality.
• You will have experience producing or using Threat Intel to connect external incident trends adversary tradecraft and internal security signals to practical security decisions.
• Knowledge of the major 3 operating systems (Windows/Linux/macOS) endpoint internals enterprise management and defensive controls would be an added value

Additional Information :

Life at Grab

We care about your well-being at Grab here are some of the global benefits we offer:

• We have your back with Term Life Insurance and comprehensive Medical Insurance.
• With GrabFlex create a benefits package that suits your needs and aspirations.
• Celebrate moments that matter in life with loved ones through Parental and Birthday leave and give back to your communities through Love-all-Serve-all (LASA) volunteering leave
• We have a confidential Grabber Assistance Programme to guide and uplift you and your loved ones through lifes challenges.
• Balancing personal commitments and lifes demands are made easier with our FlexWork arrangements such as differentiated hours

What We Stand For At Grab

We are committed to building an inclusive and equitable workplace that provides equal opportunity for Grabbers to grow and perform at their best. We consider all candidates fairly and equally regardless of nationality ethnicity race religion age gender family commitments physical and mental impairments or disabilities and other attributes that make them unique.

Remote Work :

No

Employment Type :

Full-time