Application Security Engineer - Online Gaming Platform

View full description

Requirements:

• 5+ years of experience in application security or related field.
• Strong knowledge of web application security, OWASP Top 10, and common vulnerabilities.
• Proficiency in penetration testing and ethical hacking techniques.
• Experience with security tools such as Burp Suite, OWASP ZAP, Nmap, Metasploit.
• Familiarity with secure coding practices in languages such as JavaScript, Python, or PHP.
• Understanding of cryptography and encryption techniques.
• Experience with security in cloud environments (AWS, Azure, or GCP).
• Knowledge of security compliance standards (e.g., PCI DSS, GDPR).
• Strong analytical and problem-solving skills.
• Excellent communication skills and ability to explain complex security concepts to non-technical stakeholders.

Responsibilities:

• Conduct regular security assessments and penetration testing of our web applications and APIs.
• Perform code reviews to identify security vulnerabilities and propose fixes.
• Develop and maintain secure coding guidelines for development teams.
• Implement and manage security tools for continuous security testing and monitoring.
• Investigate and respond to security incidents and vulnerabilities.
• Collaborate with development teams to integrate security practices into the SDLC.
• Stay up-to-date with the latest security threats and mitigation techniques in the gaming and e-commerce industries.
• Educate team members on security best practices and raise security awareness.
• Ensure compliance with relevant security standards and regulations.