Application Security Engineer II/III
Bengaluru, Karnataka, India
Junglee Games
Junglee Games provides the most thrilling, action-packed desktop and mobile games engineered by the world's best tech minds.We are Asia’s fastest-growing skill-based gaming company and partner brand of Flutter which is a multi-billion dollar global gaming organization. We are focused on providing our customers with the most innovative and exciting gaming experience possible. Our success has been driven by our commitment to excellence, our passion for gaming, and our ability to continuously innovate. We are driven by our strong value system, which encompasses an obsession with data, a hustler’s attitude, an owner's mindset, leading with love, and embracing change.
As our Application Security Engineer, you will get to work on the security of our apps/services - Web, Mobile and API-based at Scale. Implementing granular security controls at various points of the Secure Software Development Lifecycle.
The Goal is to build Seamless Security. We want you to redefine how developers view security, eliminating friction and improving Security natively.
You will work closely with other Security functions, DevOps, Architects and Developers and QA to build highly reliable and secure products.
Responsibilities
- Threat modeling experience for any Web/Mobile/API Application/Service, prior experience of 1-2 years is desirable.
- Expertise in 1 or more of the following areas
- API Security
- Web Application Security
- Mobile Application Security
- Assist the Application Security Lead in Secure by Design reference architectures for Developer adoption- Secure Architecture frameworks.
- Build the SCA(Software Composition Analysis) map for all the third party dependency usage at Scale and prioritize vulnerabilities based on EPSS,CISA KEV.
- Vulnerability Identification and Remediation with focus on vulnerability prioritization using EPSS,CISA KEV
- Build a robust SSDLC pipeline and envision frictionless experience for Developers in the lifecycle. Including but not limited to SAST, DAST and other Security tools in the lifecycle. Work on findings evaluation, prioritization and fix/mitigate at scale.
- Work on providing proactive Security Best practice evaluation and enforcement for third party applications (COTS-Commercial-Off-the-Shelf) .
- Contribute to the Security Champions program training modules.
- Work with Cloud Security to improve Web App Firewalls (WAF) fine tuning for applications/services at use at Junglee Games.
- Work on Security Incidents for Applications/Services across the ecosystem.
Requirements
- Overall 3-5 years of relevant experience
- Bachelor's degree in Computer Science or a related technical discipline, or equivalent practical experience.
- Understanding of security frameworks and standards like OWASP & NIST, Solid understanding of security protocols, cryptography, authentication, authorization. Prior Experience in solving any of OWASP Top 10 highly desirable.
- Good understanding of Linux and Windows OS, TCP/IP protocol stack and networking fundamentals, and security principles at all layers of the OSI stack
- Experience with API security, network security, cryptography, PKI, certificate management,
- Experience in CI/CD Tools Including Git, Jenkins, Ansible, or similar
- Knowledge and experience in web application security testing, vulnerability assessment, penetration testing, and generating reports using tools like Burp Suite, Paros, AppScan, Wireshark, Nmap, and Nessus.
- Advanced Expertise in at least one language, Shell scripting/Python/Go/NodeJS
What Junglee Games offers for this role:-
- Meaningful global exposure and an opportunity to represent Junglee Games as part of Flutter Entertainment, the largest real-money gaming company in the world.
- Ample learning opportunities and the opportunity to work with some of the best leaders and minds in the industry.
- In-depth understanding of the gaming ecosystem.
- Competitive compensation and incentives.
- Excellent work environment, great culture, and global exposure.
About Junglee Games
Junglee Games is a leader in the skill-gaming space, with over 100 million registered players. Founded in San Francisco in 2012 and part of the $30 Bn Flutter Entertainment Group, Junglee Games is the fastest-growing skill games company in Southeast Asia. Some of our notable games are Junglee Rummy, Howzat, Junglee Poker, and Carrom Stars.
Our mission is to build entertainment for millions of people around the world and help them connect with each other through high-quality games. We focus on creating exhilarating and immersive gaming experiences and also incorporate social features to promote interaction and competition among players. Our games are available on multiple platforms, including web browsers, and Android and iOS devices.
Since our inception, we have drawn 700+ of the world’s most talented people into our ranks. Our team has worked on international AAA titles like Transformers, Star Wars: The Old Republic, Real Steel, Rio, Mech Conquest, and Dueling Blades. Our designers have worked on some of Hollywood’s biggest hits, including the movie Avatar.
Junglee Games is not just a gaming business. It is a blend of data science, innovation, cutting-edge technology, and, most importantly, a value-driven culture that is creating the next set of conscious leaders. An equal-opportunity employer, Junglee Games has been certified as a Great Place to Work for four years in a row. We celebrate diversity and are committed to creating an inclusive environment for all our employees.
Junglee Games has received various accolades for its contribution to the online gaming space. The company continues to innovate and develop new games, expanding its presence in the global gaming market.
Website: https://www.jungleegames.com/
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Android Ansible APIs Application security Burp Suite Certificate management CI/CD CISA Cloud Computer Science Cryptography DAST DevOps Firewalls iOS Linux Nessus Network security NIST Nmap Node.js OWASP Pentesting PKI Python SAST Scripting SDLC TCP/IP Vulnerabilities Windows
Perks/benefits: Career development Competitive pay
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Operations Analyst jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Java-related jobs
- Open Forensics-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open DevOps-related jobs
- Open EDR-related jobs
- Open DoD-related jobs