Application Security Engineer

Engineering · Sleman, DI Yogyakarta
Department Engineering
Employment Type Full-Time
Minimum Experience Experienced

Come join us! We are a fast-growing and well-funded U.S.-based startup in Seattle, Washington with teams in Vancouver, Canada, Suzhou, and a growing office in Yogyakarta in Indonesia. Founded by industry veterans from EA, LucasArts, and EpicGames, who built the online backends for well-known titles and platforms such as EA Origin, FIFA, StarWars.com, UnrealEngine, Fortnite, Paragon, and UnrealTournament. Our company develops technology for the major well-known online game studios and publishers across the USA, Europe, and the world.


Our Mission


We are game industry veterans with years of experience building and operating live systems. As a rapidly growing startup with teams around the world, we craft technology solutions to serve game studios that are making the next generation of games.


Compensation & Benefits


We offer you Competitive salaries and other benefits: Relocation package, Private Insurance (family included and it's Cashless!), Full coverage BPJS Kes & TK, Flexy benefit, Periodic MCU, Sports activities (badminton, yoga, futsal and you can propose a new activity!), Social activity (company outings, Accelebrate, knowledge sharing session), Food to keep your engine up and running (breakfast & Lunch, fruits and snacks every day, coffee brewing), Opportunities for overseas travel, etc.


Our Culture


We believe that the best companies are ones where employees are empowered to make decisions, obsess about what’s best for users, and are not afraid to make mistakes and learn from them. Our engineering culture is based on humility, openness to feedback, and collaboration which we feel results in the best performing engineering teams and the most beneficial to everyone's growth.


Job Description


AccelByte is building a 24x7 operations team for AAA multiplayer video games. We are looking for an Application Security Engineer to work closely with the engineering team to ensure AccelByte's products are secure. you will be the voice of security in the gaming industry, identify the right security investment to help us build a strong security story for AccelByte's backend service experience, you will participate in our security incident response and other security responsibilities.


Responsibilities


  • Provide subject matter expertise on secure coding practices and security design based on current knowledge of security threats and vulnerabilities that could impact the technology stack
  • Support definition of Secure SDLC standard to include security architecture, design, and coding requirements for infrastructure, application, and data to align with application security maturity model and.
  • Will be an integral part of the initial design sessions to build in security from the begging of all projects
  • Perform application and code review and penetration testing to identify possible vulnerabilities that may be exploited and propose remediation solutions or mitigation controls.
  • Maintain and propagate secure coding standards and practices, conduct security awareness training to developers
  • Assist in the development of automated security testing to validate that secure coding best practices are being used.
  • Security tool development and security metrics delivery and improvements
  • Support response to vulnerabilities discovered internally or externally.


Requirements


  • Degree in Computer Science or equivalent experience
  • Experience in software coding/development including, scripting languages, proficient in at least one of the following programming languages: Java, Go, JavaScript, C/C++, Python
  • Experience with OWASP, static/dynamic analysis, and common security tools.
  • Have a depth knowledge of bug bounty programs and various penetration testing / hacking frameworks, like OWASP, PTES, OSSTMM, and MITRE ATT&CK
  • Experience and knowledge of security compliance (GPDR/SOC2/ISO27001) assessment for application design and implementation
  • At least 2 years+ of experience in the information security field
  • Hands-on experience in penetration testing and code analysis
  • Familiarity with common security libraries, security controls, and common security flaws.
  • Working experience of AWS, Docker, EKS/Kubernetes
  • Comfortable working in an Agile environment
  • Fluent in English both spoken and written


Nice to Have


  • Knowledge one any of the Cloud Technologies: AWS (preferably) / Google / Azure
  • CVE/Bug bounty/responsible disclosures
  • Reverse Engineering and Fuzzing to identify potential vulnerabilities
  • Comfortable with various programming and scripting languages especially for infrastructure as Code
  • Experience with cryptography
  • Contribute to open-source projects and participate in technical communities
  • Experience working for or with AAA game studios
  • Any security certification


AccelByte Inc is an Equal Employment Opportunity Employer, all qualified candidates applicants will receive consideration for employment without regard to race, religion, gender, national origin, sexual orientation, marital status, age, or disability. Our culture is innovative, inclusive, and we value our people highest.


Please visit our career page for a complete listing of our open positions:


https://accelbyte.io/careers

Thank You

Your application was submitted successfully.

  • Location
    Sleman, DI Yogyakarta
  • Department
    Engineering
  • Employment Type
    Full-Time
  • Minimum Experience
    Experienced