Company Description

About Grab and Our Workplace

Grab is Southeast Asia's leading superapp. From getting your favourite meals delivered to helping you manage your finances and getting around town hassle-free, we've got your back with everything. In Grab, purpose gives us joy and habits build excellence, while harnessing the power of Technology and AI to deliver the mission of driving Southeast Asia forward by economically empowering everyone, with heart, hunger, honour, and humility.

Job Description

Get to Know the Team

Join Grab's Red Team & Threat Intel team, which helps improve the security posture of Grab's products, platforms, cloud environments, AI systems, and enterprise technology across Southeast Asia.

The team partners with Security, Engineering, Infrastructure, IT, and business teams. This partnership enables the team to emulate real-world adversaries, identify the highest-impact risks, and help Grab strengthen its preventive, detective, and response capabilities. The Threat Intel function brings external incident trends, adversary behaviours, and internal improvement opportunities into Grab's security priorities. This helps the team plan intelligence-led Purple Team exercises, advise leadership, and support risk prioritisation with the Vulnerability Management team. We work with curiosity, technical depth, and responsibility, using offensive security techniques and threat intelligence to make Grab safer for our users, partners, and Grabbers.

Get to Know the Role

You will report to the Red Team & Threat Intel team leader and perform complex red team operations across cloud, CI/CD, endpoint, identity, application, and AI environments. You will design realistic attack simulations, develop offensive tooling, apply threat intelligence to Purple Team planning, and turn findings into practical improvements for engineering and security teams.

This role is based in Kuala Lumpur, Malaysia or Jakarta, Indonesia. You will help shaping Grab's Red Team and Threat Intel capabilities, and influence how we use AI and automation to scale offensive security work responsibly. If you enjoy building tools, testing assumptions, and helping defenders get sharper, we will give you the platform to make a regional impact.

The Critical Tasks You Will Perform

• You will lead end-to-end red team operations, and intelligence-led Purple Team exercises with the Blue Team. These exercises will emulate realistic adversary behaviour across multiple environments, including cloud infrastructure, CI/CD pipelines, identity systems, endpoints, and applications.
• You will develop command-and-control tooling, implants, payload delivery mechanisms, and operator workflows for authorised security exercises.
• You will red team AI systems, including internal copilots, agentic workflows, AI-assisted operational tools, and MLOps environments.
• You will use AI tools to improve research, automation, payload development, reporting, operational planning, and analysis of defensive coverage.
• You will translate red team findings and threat intelligence into clear engineering actions. You will partner with defenders, platform teams, and the Vulnerability Management team to improve detection, response, hardening, security architecture, and risk prioritisation.
• You will work with other team members on offensive security tradecraft, tool development, operational safety, documentation, and responsible execution of adversary simulations.
• You will contribute to the Red Team and Threat Intel roadmap. Your contributions will involve identifying the latest attack techniques and evaluating new tooling.
• You will produce Threat Intel assessments from security incidents observed in the wild or improvement opportunities identified internally. Additionally, you will advise leadership on likely impact, priority, and next actions.

Qualifications

What Essential Skills You Will Need

• You will have 5 or more years of experience in offensive security, red teaming, security engineering, exploit development, cloud security, or adjacent technical security roles.
• You will have hands-on experience developing command-and-control tooling, implants, loaders, payloads, or offensive automation.
• You will have practical experience assessing CI/CD systems, source control platforms, build pipelines, artefact repositories, secrets handling, and deployment workflows.
• You will have firm knowledge of cloud environments, including identity, networking, logging, container platforms, and common privilege escalation paths.
• You will have experience assessing AI-enabled products, internal AI platforms, or agentic systems in adversarial scenarios, and using AI tools to improve security research, workflows, and output quality.
• You will have experience producing or using Threat Intel to connect external incident trends, adversary tradecraft, and internal security signals to practical security decisions.
• Knowledge of the major 3 operating systems (Windows/Linux/macOS), endpoint internals, enterprise management, and defensive controls would be an added value

Additional Information

Life at Grab

We care about your well-being at Grab, here are some of the global benefits we offer:

• We have your back with Term Life Insurance and comprehensive Medical Insurance.
• With GrabFlex, create a benefits package that suits your needs and aspirations.
• Celebrate moments that matter in life with loved ones through Parental and Birthday leave, and give back to your communities through Love-all-Serve-all (LASA) volunteering leave
• We have a confidential Grabber Assistance Programme to guide and uplift you and your loved ones through life's challenges.
• Balancing personal commitments and life's demands are made easier with our FlexWork arrangements such as differentiated hours

What We Stand For At Grab

We are committed to building an inclusive and equitable workplace that provides equal opportunity for Grabbers to grow and perform at their best. We consider all candidates fairly and equally regardless of nationality, ethnicity, race, religion, age, gender, family commitments, physical and mental impairments or disabilities, and other attributes that make them unique.