Match score not available

Senior Application Security Engineer

unlimited holidays - extra holidays - work from home - coworking available
Remote: 
Full Remote
Contract: 
Experience: 
Senior (5-10 years)
Work from: 

Offer summary

Qualifications:

Prior experience in application security, Expertise in architecting security solutions, Familiarity with CI/CD pipelines and languages, Understanding of international security requirements, Firm knowledge of enterprise application architectures.

Key responsabilities:

  • Own the application security technology stack
  • Provide architectural guidance on security practices
  • Collaborate with cross-functional teams for project execution
  • Perform security controls validation and risk assessments
  • Track project progress and communicate security posture
Fortis Games logo
Fortis Games Scaleup https://www.fortisgames.com/
201 - 500 Employees
See more Fortis Games offers

Job description

Who we are

At Fortis Games we aspire to make great games that bring people together while redefining how game companies work. We believe in building a sense of belonging through our games, their communities, and how we operate and treat each other. Through our game communities, we will create powerful connections and lasting memories. We will foster a culture of diversity, equity and belonging where together our diverse skills, experiences and backgrounds impact the games we make.

We are an early but mighty organization with a leadership team of game industry veterans. There are many opportunities for you to have a big impact on the products we'll be making as well as the overall direction of the company. If you're passionate about tackling difficult problems with direct and thoughtful communication and team first mentality, we may be the right place for you.

About the role

Fortis Games is hiring a Senior Application Security Engineer to manage all aspects of the company’s application cybersecurity needs.

What you'll achieve

  • Own the Application Security technology stack and associated processes and procedures.
  • Help maintain our build & deployment processes.
  • Provide architectural guidance and leadership on best practices regarding security in software development, shared services, user interface design frameworks, high performance solutions, server-side development, integrations, tools and technologies.
  • Implement, tune, and help game teams understand the output from static and dynamic analysis tools.
  • Collaborate with engineers, consultants and leadership to address security risks and provide mitigation recommendations within the Secure Software Development Lifecycle (SSDLC).
  • Perform validation of security controls to ensure consistency with compliance and industry standard methodologies
  • Track project progress through project management software such as ClicklUp JIRA, Confluence and Google suite.
  • Build relationships with cross functional teams to execute projects on time and with high quality.
  • Perform audits and assessments to identify risk and create a remediation plan.
  • Define security test strategies for complex systems, identifying security vulnerabilities
  • Build reports and communicate security posture to all levels of the organization.
  • Detect and remedy related security issues such as OWASP top 10
  • Manage multiple projects concurrently and maintain project & technology-level documentation.

What you’ll need to be successful 

  • Prior experience working on an Application Security team (experience at a mobile gaming organization a plus)
  • Expert knowledge with architecting and implementing security solutions into Secure Software Development Lifecycle (SSDLC) and CI/CD pipelines
  • Familiarity with building and architecting build & deploy processes, infrastructure-as-code (IaC), and CI/CD pipelines
  • Experience with multiple languages such as C#, Typescript, Javascript, etc.
  • Ability to understand business requirements and apply security without adversely affecting the desired functionality.
  • Experience analyzing critical parts of the codebase with the ability to define and review high risk code for vulnerabilities 
  • Experience implementing, tuning and helping software teams understand the output from SCA, SAST, DAST tools
  • Understanding of international security and privacy requirements such as GDPR
  • Knowledge of automated attack tools and developing mitigation techniques
  • Firm understanding of enterprise class application architectures that are highly scalable and reliable and the expertise to secure them

***Please submit resumes in English***

Why join us

There are many reasons to join us, but here are a few:

  • We strongly believe we are changing how games studios operate and at the core of what we do is making great games that create a connected community
  • We're not just about making Games Where You Belong. We're also about building communities where our people belong. That's why Fortis is a thriving environment that celebrates diversity, embraces inclusivity, and fosters growth.
  • Build and grow with a seasoned team of accomplished talent who have left an impactful mark in their disciplines, both in and out of gaming

Fortis is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, protected veteran status, or any other basis protected by applicable law, and will not be discriminated against on the basis of disability.

Required profile

Experience

Level of experience: Senior (5-10 years)
Industry :
Gaming
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Other Skills

  • Teamwork
  • Communication

Security Engineer Related jobs