Plus
Π’ΠΊΠ»ΡŽΡ‡ΠΈΡ‚ΡŒ Plus
Назад
Company hidden
2 дня назад

Senior Security Engineer (Infrastructure & Product Security)

Π€ΠΎΡ€ΠΌΠ°Ρ‚ Ρ€Π°Π±ΠΎΡ‚Ρ‹
hybrid
Π’ΠΈΠΏ Ρ€Π°Π±ΠΎΡ‚Ρ‹
fulltime
Π“Ρ€Π΅ΠΉΠ΄
senior
Английский
b2
Π‘Ρ‚Ρ€Π°Π½Π°
Serbia/Kazakhstan
Вакансия ΠΈΠ· списка Hirify.GlobalВакансия ΠΈΠ· Hirify Global, списка ΠΌΠ΅ΠΆΠ΄ΡƒΠ½Π°Ρ€ΠΎΠ΄Π½Ρ‹Ρ… tech-ΠΊΠΎΠΌΠΏΠ°Π½ΠΈΠΉ
Для мэтча ΠΈ ΠΎΡ‚ΠΊΠ»ΠΈΠΊΠ° Π½ΡƒΠΆΠ΅Π½ Plus

ΠœΡΡ‚Ρ‡ & Π‘ΠΎΠΏΡ€ΠΎΠ²ΠΎΠ΄

Для мэтча с этой вакансиСй Π½ΡƒΠΆΠ΅Π½ Plus

ОписаниС вакансии

ВСкст:
/

TL;DR

Senior Security Engineer (Cybersecurity): Strengthening the security of infrastructure, internal services, and product environments with an accent on cloud security, API protection, and offensive security practices. Focus on reducing the attack surface, conducting vulnerability assessments, and implementing robust security controls in a high-load gaming environment.

Location: Hybrid in Almaty or Belgrade

Company

hirify.global studio is an independent and innovative player in the gaming industry focused on crafting outstanding products.

What you will do

  • Develop and enhance security controls for cloud and infrastructure environments.
  • Manage network security layers, including WAF, DDoS protection, firewalls, and mTLS.
  • Analyze and improve API security and service-to-service interactions.
  • Conduct black-box testing, vulnerability assessments, and coordinate pentests.
  • Manage bug bounty programs and handle responsible disclosure processes.
  • Collaborate on securing backend architecture to reduce the overall attack surface.

Requirements

  • Professional experience as a Security, Infrastructure, or Platform Security Engineer.
  • Strong hands-on expertise in cloud security, specifically with GCP and/or AWS IAM.
  • Practical experience with Kubernetes security and Linux hardening.
  • Deep understanding of network security protocols and tools (WAF, DDoS, mTLS).
  • Proficiency in automation using Python, Bash, Go, or similar languages.
  • Experience with Terraform for implementing Infrastructure as Code (IaC).

Nice to have

  • Experience in product/application security and conducting black-box testing.
  • Background in high-load product companies or gaming-specific security (anti-cheat/abuse).
  • Experience with corporate access management systems like Google Workspace.
  • Experience managing bug bounty programs.

Culture & Benefits

  • Hybrid work format in Almaty or Belgrade with flexible working hours.
  • Performance-based salary reviews and a structured promotion system.
  • Paid sick leave and assistance in difficult life situations.
  • Strong engineering culture with a focus on minimal bureaucracy.

Hiring process

  • Application review and CV screening.
  • Initial HR interview to discuss motivation and expectations.
  • Technical assessment involving interviews and potentially a test assignment.
  • Final interview with the hiring manager or team lead.

Π‘ΡƒΠ΄ΡŒΡ‚Π΅ остороТны: Ссли Ρ€Π°Π±ΠΎΡ‚ΠΎΠ΄Π°Ρ‚Π΅Π»ΡŒ просит Π²ΠΎΠΉΡ‚ΠΈ Π² ΠΈΡ… систСму, ΠΈΡΠΏΠΎΠ»ΡŒΠ·ΡƒΡ iCloud/Google, ΠΏΡ€ΠΈΡΠ»Π°Ρ‚ΡŒ ΠΊΠΎΠ΄/ΠΏΠ°Ρ€ΠΎΠ»ΡŒ, Π·Π°ΠΏΡƒΡΡ‚ΠΈΡ‚ΡŒ ΠΊΠΎΠ΄/ПО, Π½Π΅ Π΄Π΅Π»Π°ΠΉΡ‚Π΅ этого - это мошСнники. ΠžΠ±ΡΠ·Π°Ρ‚Π΅Π»ΡŒΠ½ΠΎ ΠΆΠΌΠΈΡ‚Π΅ "ΠŸΠΎΠΆΠ°Π»ΠΎΠ²Π°Ρ‚ΡŒΡΡ" ΠΈΠ»ΠΈ ΠΏΠΈΡˆΠΈΡ‚Π΅ Π² ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΡƒ. ΠŸΠΎΠ΄Ρ€ΠΎΠ±Π½Π΅Π΅ Π² Π³Π°ΠΉΠ΄Π΅ β†’