Grab
Technology
LeadSecurityEngineer,RedTeam&ThreatIntel
Neural analysis suggests this role is
optimal for mid candidates.
“Lead Security Engineer, Red Team & Threat Intel at Grab. Skills: Red Team Operations, Threat Intelligence, Offensive Tooling, AI Security. The Lead Security Engineer will conduct end-to-end red team operations and intelligence-led Purple Team exercises, emulating adversary behavior across cloud, CI/CD, identity, endpoint, and AI environments. This role involves developing offensive tooling, assessing AI systems, and translating findings into practical security improvements for engineering and de”
What You'll Achieve.
The primary objective is to improve Grab's security posture by identifying high-impact risks and strengthening preventive, detective, and response capabilities. The role aims to translate findings into practical improvements for engineering and security teams, making Grab safer.
Industry & Context.
adversary simulations; risk prioritisation
What They're Looking For.
Must Have
Requires 5+ years of experience in offensive security, red teaming, security engineering, exploit development, cloud security, or related technical security roles. Must have hands-on experience developing command-and-control tooling, implants, loaders, payloads, or offensive automation. Practical experience assessing CI/CD systems, source control platforms, build pipelines, artefact repositories, secrets handling, and deployment workflows is essential. Firm knowledge of cloud environments including identity, networking, logging, container platforms, and common privilege escalation paths is required. Experience assessing AI-enabled products, internal AI platforms, or agentic systems in adversarial scenarios, and using AI tools for security research, workflows, and output quality is necessary. Experience producing or using Threat Intel to connect external incident trends, adversary tradecraft, and internal security signals to practical security decisions is also required.
Nice to Have
Knowledge of the major 3 operating systems (Windows/Linux/macOS), endpoint internals, enterprise management, and defensive controls would be an added value.
What You'll Do.
The Lead Security Engineer will conduct end-to-end red team operations and intelligence-led Purple Team exercises, emulating adversary behavior across cloud, CI/CD, identity, endpoint, and AI environments.
This role involves developing offensive tooling, assessing AI systems, and translating findings into practical security improvements for engineering and defense teams.
The engineer will also contribute to threat intelligence assessments and the team's roadmap, making Grab safer for users and employees.
How You'll Work.
Team & Collaboration
The team partners with Security, Engineering, Infrastructure, IT, and business teams to emulate adversaries and identify risks. The role involves partnering with defenders, platform teams, and the Vulnerability Management team to implement improvements.
Communication Scope
clear engineering actions
Full Job Description
About Grab and Our Workplace Grab is Southeast Asia's leading superapp. From getting your favourite meals delivered to helping you manage your finances and getting around town hassle-free, we've got your back with everything. In Grab, purpose gives us joy and habits build excellence, while harnessing the power of Technology and AI to deliver the mission of driving Southeast Asia forward by economically empowering everyone, with heart, hunger, honour, and humility. Get to Know the Team Join Grab's Red Team & Threat Intel team, which helps improve the security posture of Grab's products, platforms, cloud environments, AI systems, and enterprise technology across Southeast Asia. The team partners with Security, Engineering, Infrastructure, IT, and business teams. This partnership enables the team to emulate real-world adversaries, identify the highest-impact risks, and help Grab strengthen its preventive, detective, and response capabilities. The Threat Intel function brings external incident trends, adversary behaviours, and internal improvement opportunities into Grab's security priorities. This helps the team plan intelligence-led Purple Team exercises, advise leadership, and support risk prioritisation with the Vulnerability Management team. We work with curiosity, technical depth, and responsibility, using offensive security techniques and threat intelligence to make Grab safer for our users, partners, and Grabbers. Get to Know the Role You will report to the Red Team & Threat Intel team leader and perform complex red team operations across cloud, CI/CD, endpoint, identity, application, and AI environments. You will design realistic attack simulations, develop offensive tooling, apply threat intelligence to Purple Team planning, and turn findings into practical improvements for engineering and security teams. This role is based in Kuala Lumpur, Malaysia or Jakarta, Indonesia. You will help shaping Grab's Red Team and Threat Intel capabilities, and influence how we
Applying for this Lead Security Engineer, Red Team & Threat Intel role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on SmartRecruiters
- SmartRecruiters often includes a video screening step — check camera and mic permissions.
- Link your GitHub or portfolio directly in the profile section for technical roles.
- Applications may be reviewed by AI scoring before reaching a recruiter — use keywords from the job description.
ANONYMOUS · UNFILTERED
What do employees actually say about Grab?
Real rants from real employees. Read before you apply.