Lead Security Engineer
Johannesburg South, Gauteng, South Africa - Remote
Carry1st
Carry1st is Africa's #1 mobile game and digital content publisher in Nigeria, South Africa, Kenya, Ghana, Egypt, Morocco and throughout the continent.Carry1st is Africa’s leading publisher of mobile games and digital content. Operating at the intersection of games, publishing, and fintech, we scale awesome content in frontier markets by solving hard problems. Across our publishing and Pay1st business lines, we are partnered with top global game companies like Riot Games, Activision, and Stillfront. We are backed by top investors like: a16z, Bitkraft, Google, Konvoy, Riot Games, Sony and Nas.
As Lead Security Engineer you’ll be responsible for analyzing software designs and implementations from a security perspective, and identify and resolve security issues. You will include the appropriate security analysis, defenses and countermeasures at each phase of the software development lifecycle, to result in robust and reliable software. You will also be responsible for Cyber Security countermeasures, infrastructure security posture and will own incident responses and security policies across the business.
You will...
- Develop security standards, procedures, strategy plans, and roadmaps based on sound enterprise architecture practices
- Write detailed problem reports, test plan documents and mitigation recommendations as needed
- Design and develop security testing scenarios, advise team members on secure coding practices, and complete security reviews of new features, products, services, and vendors
- Perform on-going security testing and code reviews to improve software security
- Develop tools to aid penetration test automation and effectiveness and create threat models that result in more secure application design
- Provide timely reporting of security related systems and events to various levels of management on a regular basis
Requirements
What makes you a great candidate?
- Minimum 5 years’ experience in the field of application security
- Excellent leadership, mentorship and coaching skills, with proven success as a Technical Team Leader
- Proven experience with AWS security best practices, including IAM, S3, RDS and KMS.
- Strong understanding of Kubernetes security concepts and best practices.
- Knowledge of a variety of programming languages (Java/J2EE, Javascript) and strong capacity for debugging application and security issues
- Experience in applying cyber security best practices in highly scalable applications
- Self-motivation, problem solving, and ability to work in a distributed team environment
Our Stack
- Backend code written primarily in Java, and one application in PHP
- Hosting in AWS with use of KOPS, ECR, EC2, RDS, S3, ELB, ElastiCache, ElasticSearch, Route53 – managed with Terraform IaC
- DevOps/CI implemented using Jira, Jenkins, Kubernetes, Docker, Bitbucket, Prometheus, and Grafana
- Caching is implemented primarily via Redis
- Queuing is implemented via RabbitMQ
Benefits
What will it be like to work at Carry1st?
Carry1st is a fast-paced and dynamic place to work. Our team is diverse and global as we operate fully remotely across 25+ countries. At Carry1st, you will have the opportunity to…
- Build awesome, industry-changing products, every day
- Grow with a VC-backed startup at the intersection of gaming and fintech
- Work from anywhere in the world with international teammates
- Own shares in the Company - enabling you to benefit from the value you create
Some additional perks…
- Co-working excursions: Travel to meet your colleagues in cities around the world
- Awesome equipment: Get everything you need to work effectively
- Remote working allowance: Put an additional $600 / year to optimise your WFH experience
- Learning and development: Attend courses, conferences and training events
- Social events: Participate in regular company events to relax and connect with teammates
- Birthday leave: Enjoy a paid day off on your special day
We hire great people from a wide variety of backgrounds, not just because it's the right thing to do, but because it makes our company stronger. Join us!
Learn more about Carry1st…
- Andreessen Horowitz shared why they invested in Carry1st
- VentureBeat announced that Carry1st has raised $27 million to develop and publish mobile games in Africa
- Remerge hosted Cordel on a podcast to discuss Carry1st and the African gaming market
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation AWS Bitbucket DevOps Docker EC2 Elasticsearch FinTech Grafana IAM Java JavaScript Jira Kubernetes PHP Prometheus RabbitMQ Redis S3 SDLC Security analysis Strategy Terraform
Perks/benefits: Career development Conferences Gear Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs