Security Engineer II - Mayhem Studios

Bengaluru full-time

Job description

As a Security Engineer II at Mayhem Studios, the individual will be responsible for conducting security assessments, code reviews, penetration testing, and leading incident response. They are expected to collaborate with development teams to mitigate risks and contribute to security-conscious practices and system architecture designs.

Responsibility

  • Conduct comprehensive security assessments, code reviews, and penetration testing for APIs, infrastructure, and mobile games.
  • Perform threat modeling, risk assessment, and security design reviews.
  • Collaborate closely with development teams to proactively identify and mitigate security risks throughout the software development lifecycle.
  • Integrate security tools into the CI/CD pipeline for automated security testing.
  • Drive security awareness and training initiatives to instill a security-conscious mindset within the development teams.
  • Lead incident response efforts for prompt resolution of security breaches, coordinating with stakeholders.
  • Collaborate with the Anti-Cheating team to fortify game security, ensuring fair gameplay.
  • Contribute to the design and review of system architectures with an emphasis on security-by-design principles.
  • Stay current with evolving security threats, vulnerabilities, and best practices.
  • Develop and implement security automation to reduce manual efforts in day-to-day operations.

Qualifications

  • 5+ years of professional experience in product security, application security, or related roles in gaming or software industry.
  • Bachelor's or Master's degree in Computer Science, Information Security, or related field.
  • Familiarity with security engineering best practices, encompassing network security, systems security, cryptography, and security operations.
  • Strong understanding of common security frameworks, encryption, and authentication/authorization protocols.
  • Thorough understanding of OWASP Top 10 for Web, Mobile, and APIs.
  • Hands-on experience with security tools such as Frida, BurpSuite, etc.
  • Exceptional communication skills to convey security concepts to technical and non-technical stakeholders.
  • Proficiency in any scripting languages such as Python, Bash, etc.
  • Participation in bug bounty programs or Capture The Flag (CTF) competitions.
  • Knowledge of cloud security concepts, particularly in Google Cloud Platform (GCP), is desirable.
  • Relevant certifications such as OSCP, OSCE, or equivalent are advantageous.

Job Summary

Sign in to Apply

Last Seen: 2024-10-03

Job Type: full-time

Location: Bengaluru

First Seen: 2023-12-06

Company Summary

MPL, short for Mobile Premier League, is a mobile esports platform headquartered in India. It hosts various tournaments and enables users to win real cash prizes. MPL offers multiple games such as fantasy sports, puzzles, and more, facilitating skill-based competitive gaming on a unified platform.