Application Security Specialist
Serbia
Xsolla
Find out how you can launch, monetize and scale your video games worldwide, with no upfront costs, using Xsolla's comprehensive suite of tools and services.RESPONSIBILITIES
- Seek and investigate vulnerabilities in the company's products
- Collaborate with product development, information technology, and management
- Participate in security assessments of service architecture
- Develop and conduct training events for developers
- Participate in the management of the Bug Bounty program
- Assist developers in vulnerability mitigation according to agreed SLAs
- Maintain, develop and automate SDLC practices
- Assist in implementing security code review process
- Participate in the selection and implementation of new information security systems
- Participate in information security incident investigations
REQUIREMENTS
- At least 3 years of relevant experience
- Familiar with web application attacks, how to exploit them, and defense techniques
- Experienced in doing penetration testing in PHP and Javascript
- Understand the difference between threat and risk, and are familiar with vulnerability assessment
- Understand the principles of networking and how web applications work
- Are familiar with BurpSuite/OWASP ZAP etc
- Familiar with the languages and frameworks for developing modern web applications
- Familiar with manual and automated application security analysis tools
- Familiar with SDLC
- Verbal communication in English is easy
Xsolla is a global video game commerce company with a robust and powerful set of tools and services designed specifically for the video game industry. Since its founding in 2005, Xsolla has helped thousands of game developers and publishers of all sizes fund, market, launch and monetize their games globally and across multiple platforms. As an innovative leader in game commerce, Xsolla’s mission is to solve the inherent complexities of global distribution, marketing, and monetization to help our partners reach more geographies, generate more revenue and create relationships with gamers worldwide. Headquartered and incorporated in Los Angeles, California, with offices in Berlin, Seoul, Beijing, Kuala Lumpur, and cities around the world, Xsolla supports major gaming titles like Valve, Twitch, Roblox, Ubisoft, Epic Games, KRAFTON, Nexters, NetEase, Playstudios, Playrix, miHoYo, Pearl Abyss, NCSoft, and more.
For additional information and to learn more, please visit: xsolla.com
PHYSICAL DEMANDS:
The physical demands for this position are sits, stands, bends, lifts, and moves intermittently during working hours. These physical requirements may be accomplished with or without reasonable accommodations. The duties of this position may change from time to time so the individual and organization can achieve their results. This job description is intended to describe the general level of work being performed. It is not intended to be all-inclusive. Xsolla takes your privacy very seriously, and will not sell or externally distribute any data received during the hiring process. For more information related to GDPR or CCPA please reach out to careers@xsolla.com.
Xsolla is an equal opportunity employer and does not discriminate based on the following: race, color, ancestry, national origin, religion, creed, age, disability, mental and physical, sex, gender (including pregnancy, childbirth, breastfeeding or related medical conditions), sexual orientation, gender identity, gender expression, medical condition, genetic information, marital status, military and veteran status, and any other terms deemed by the State of California.
Xsolla takes your privacy very seriously, and will not sell or externally distribute any data received during the hiring process. For more information related to GDPR or CCPA please reach out to careers@xsolla.com.
Longevity, Opportunity, Vision, and Enjoy the game!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Burp Suite CCPA Confluence Exploit GDPR GitLab JavaScript Jira OWASP Pentesting PHP Privacy SDLC Security analysis Security assessment SLAs Vulnerabilities
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open PowerShell-related jobs
- Open SQL-related jobs