Platform Security Engineer
New
S
Social Discovery GroupSocial Discovery
Location: Serbia, worldwideFull-TimeMiddle
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years in information security, including 3+ years in product security
- Required Skills
- SQLElasticSearchOAuth
Requirements
- 5+ years in information security.
- 3+ years in product security.
- Hands-on experience operating a WAF (Wallarm, Akamai, or Cloudflare).
- Expertise in API security including OWASP API Security Top 10 and API gateway experience.
- Experience with anti-bot solutions including fingerprinting and behavioral detection.
- Practical understanding of DDoS mitigation (L3–L7).
- Experience running a vulnerability management process (CVSS, prioritization, remediation SLAs).
- Experience coordinating pentest projects and working with pentest reports.
- Strong understanding of OAuth/OIDC, session management, and JWT.
- Practical SQL and Elasticsearch skills for querying logs and data.
Responsibilities
- Improve and maintain perimeter and network-layer defenses such as WAF, rate limiting, anti-bot, and DDoS mitigation.
- Secure product APIs against abuse and anomalous traffic.
- Strengthen authentication, authorization, and access control at the product level, addressing IDOR-class issues.
- Run the vulnerability management process including identification, prioritization, and remediation tracking.
- Coordinate external pentests and drive remediation of findings.
- Lead incident response for product security incidents.
- Build detection and response processes in collaboration with the monitoring team.
- Contribute to Fraud, Trust, and Safety initiatives.
- Protect customer data via access control, encryption, and masking.
- Run the Security Champions program to train product teams on secure development.
- Manage the bug bounty program.
View Full Description & ApplyYou'll be redirected to the employer's site