7 days ago
Responsibilities
- Perform security reviews and audits of platform and application software throughout design and launch.
- Provide guidance and expertise to product and operations teams across Scopely.
- Build automation and tooling that amplify the Security Team’s impact and improve the developer experience.
- Drive initiatives in security architecture, application scanning, fuzzing, and other proactive defenses.
- Contribute to hardening efforts across in-house libraries, CI/CD systems, and cloud/container environments.
- Be responsible for third-party library reviews and manage vulnerability remediation.
- Educate engineers on secure coding practices and help standardize security across teams.
- Engage in red-team exercises and coordinate with internal teams and external pentesting partners.
- Implement and maintain agentic or AI-enabled workflows to speed-up common security tasks.
Requirements
- 5+ years of experience in a global company with cloud-centric infrastructure (preferably GCP).
- In-depth experience in hardening distributed web services, cloud services, and platform architectures.
- Strong programming skills (preferably Go or Java) and a deep understanding of common vulnerability classes and exploitation patterns.
- Excellent communication skills and experience collaborating across distributed teams.
- Experience implementing services and applications with AI tools like Claude, Codex, OpenCode, or Gemini.