We are seeking an Application Security Engineer to join our dynamic team focusing on developing iGaming solutions.

REQUIREMENTS

• Experience integrating security scanning/tooling into the development pipeline
• Experience in analyzing and securing microservices and applications developed using JavaScript and Typescript
• Experience with CI/CD pipelines (such as Gitlab and Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation)
• Hands-on development experience in Python/shell scripting
• Strong understanding of supply chain security, software integrity, and secure software delivery
• Experience with docker and mesh technologies (such as ISTIO)
• Experience with architecture and security reviews, threat modeling, and application risk is highly desired
• Experience working with Agile methodologies
• Knowledge of privacy laws and regulations, such as GDPR desired
• Familiarity with industry regulations, frameworks, and practices (PCI, ISO27001, NIST, etc.)

• Demonstrated ability to collaborate with other teams to achieve complex objectives
• Responsible for security architecture design from cloud infrastructure to application through the implementation of “secure by design” principles
• Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products
• Proof security implementations within infrastructure and application deployment manifest and the CI/CD pipelines
• Define required policies, controls, and capabilities for the protection of products and environments
• Build and validate declarative threat model automation
• Participate in engineering teams’ product planning cycles and committees
• Oversee the product security aspects for migration of products and services from data centers to the public cloud, e.g., AWS
• Serve as a trusted cyber security advisor to product and application teams