Platform Security Engineer

New
S
Social Discovery GroupSocial Discovery
Location: Serbia, worldwideFull-TimeMiddle
Salary not disclosed
Apply NowOpens the employer's application page

Job Details

Experience
5+ years in information security, including 3+ years in product security
Required Skills
SQLElasticSearchOAuth

Requirements

  • 5+ years in information security.
  • 3+ years in product security.
  • Hands-on experience operating a WAF (Wallarm, Akamai, or Cloudflare).
  • Expertise in API security including OWASP API Security Top 10 and API gateway experience.
  • Experience with anti-bot solutions including fingerprinting and behavioral detection.
  • Practical understanding of DDoS mitigation (L3–L7).
  • Experience running a vulnerability management process (CVSS, prioritization, remediation SLAs).
  • Experience coordinating pentest projects and working with pentest reports.
  • Strong understanding of OAuth/OIDC, session management, and JWT.
  • Practical SQL and Elasticsearch skills for querying logs and data.

Responsibilities

  • Improve and maintain perimeter and network-layer defenses such as WAF, rate limiting, anti-bot, and DDoS mitigation.
  • Secure product APIs against abuse and anomalous traffic.
  • Strengthen authentication, authorization, and access control at the product level, addressing IDOR-class issues.
  • Run the vulnerability management process including identification, prioritization, and remediation tracking.
  • Coordinate external pentests and drive remediation of findings.
  • Lead incident response for product security incidents.
  • Build detection and response processes in collaboration with the monitoring team.
  • Contribute to Fraud, Trust, and Safety initiatives.
  • Protect customer data via access control, encryption, and masking.
  • Run the Security Champions program to train product teams on secure development.
  • Manage the bug bounty program.
View Full Description & ApplyYou'll be redirected to the employer's site
View details
Apply Now