Senior Security Engineer (Infrastructure & Product Security)

TL;DR

Senior Security Engineer (Cybersecurity): Strengthening the security of infrastructure, internal services, and product environments with an accent on cloud security, API protection, and offensive security practices. Focus on reducing the attack surface, conducting vulnerability assessments, and implementing robust security controls in a high-load gaming environment.

Location: Hybrid in Almaty or Belgrade

Company

hirify.global studio is an independent and innovative player in the gaming industry focused on crafting outstanding products.

What you will do

• Develop and enhance security controls for cloud and infrastructure environments.
• Manage network security layers, including WAF, DDoS protection, firewalls, and mTLS.
• Analyze and improve API security and service-to-service interactions.
• Conduct black-box testing, vulnerability assessments, and coordinate pentests.
• Manage bug bounty programs and handle responsible disclosure processes.
• Collaborate on securing backend architecture to reduce the overall attack surface.

Requirements

• Professional experience as a Security, Infrastructure, or Platform Security Engineer.
• Strong hands-on expertise in cloud security, specifically with GCP and/or AWS IAM.
• Practical experience with Kubernetes security and Linux hardening.
• Deep understanding of network security protocols and tools (WAF, DDoS, mTLS).
• Proficiency in automation using Python, Bash, Go, or similar languages.
• Experience with Terraform for implementing Infrastructure as Code (IaC).

Nice to have

• Experience in product/application security and conducting black-box testing.
• Background in high-load product companies or gaming-specific security (anti-cheat/abuse).
• Experience with corporate access management systems like Google Workspace.
• Experience managing bug bounty programs.

Culture & Benefits

• Hybrid work format in Almaty or Belgrade with flexible working hours.
• Performance-based salary reviews and a structured promotion system.
• Paid sick leave and assistance in difficult life situations.
• Strong engineering culture with a focus on minimal bureaucracy.

Hiring process

• Application review and CV screening.
• Initial HR interview to discuss motivation and expectations.
• Technical assessment involving interviews and potentially a test assignment.
• Final interview with the hiring manager or team lead.