Application Security Engineer

1 Month ago • 5-7 Years • Cyber Security

Job Summary

Job Description

LAIKA is seeking an Application Security Engineer to join their Information Security team. This role involves designing and implementing security strategies to protect the studio's creative and technical foundation, from animation stages to the cloud. The engineer will conduct in-depth assessments, penetration tests, and vulnerability analyses in collaboration with software engineers, SREs, and technology leaders. Key responsibilities include identifying and mitigating vulnerabilities through security assessments and code audits, performing penetration testing across various environments (web applications, plugins, SaaS, IoT, networks), analyzing source code for security flaws, administering application security testing tools (SAST, DAST, IAST), and developing solutions for security issue remediation via product security tests, bug bounty programs, and vulnerability disclosure programs. The role also requires collaborating with developers and leadership to address security risks, implementing security best practices throughout the development lifecycle, supporting DevOps, SRE, and cloud security architectures, and evaluating new security tools and methodologies. The engineer will also apply API security best practices, work with public cloud platforms, utilize red teaming and vulnerability assessment tools, manage knowledge repositories and CI/CD pipelines, stay updated on cybersecurity threats, and develop comprehensive security reports.
Must have:
  • 5+ years cybersecurity OR 7+ years software engineering with security focus
  • Strong understanding of web application security
  • Strong understanding of cloud security
  • Strong understanding of API security best practices
  • Hands-on application penetration testing experience
  • Experience in cross-functional teams
Good to have:
  • Proficiency in Python, Perl, Go, or Ruby
  • Familiarity with AWS, Azure, or GCP
  • Expertise with SAST, DAST tools
  • Experience with CI/CD security
  • Experience with DevSecOps methodologies
  • OSCP, GPEN, or GWAPT certifications

Job Details

General Summary

LAIKA is seeking an Application Security Engineer (AppSec) to join our Information Security team and play a vital role in protecting the creative and technical foundation of our studio. From the animation stages to the cloud, you’ll be designing and implementing robust security strategies that keep our content—and the technology that empowers it—safe, secure, and resilient.  

In this role, you’ll partner with software engineers, site reliability engineers (SREs), and technology leaders to conduct in-depth assessments, penetration tests, and vulnerability analyses across a wide range of environments. Your work will directly support the protection of LAIKA’s proprietary tools and workflows, ensuring our stories reach the world untarnished. 

Job Functions

Build & Strengthen Security: 

  • Conduct security assessments and code audits to identify and mitigate vulnerabilities. 
  • Perform penetration testing across web applications, plugins, SaaS platforms, IoT devices, and networks. 
  • Analyze and test source code for security flaws and recommend mitigation strategies. 
  •  Administer application security testing tools, including SAST, DAST, and IAST (static, dynamic, and interactive analysis). 
  • Develop solutions to drive remediation of security issues through product security tests, bug bounty programs, and vulnerability disclosure programs. 

Collaborate Across Teams:

  • Work alongside developers, technology leaders, and external partners to address security risks. 
  • Collaborate with internal teams to design and implement security best practices across the development lifecycle. 
  • Support security initiatives related to DevOps, SRE, and cloud security architectures. 
  • Research, evaluate, and recommend new security tools and methodologies to improve testing capabilities. 

Advance Our Security Ecosystem:

  • Apply API security best practices and work with public cloud platforms (AWS, Azure, GCP). 
  • Utilize red teaming and vulnerability assessment tools (Metasploit, Kali, Nessus, Cobalt Strike, Acunetix). 
  • Manage knowledge repositories and CI/CD pipelines using GitHub, GitLab, Jenkins, Perforce, Jira, and Confluence. 
  • Stay ahead of emerging cybersecurity threats and continuously improve security testing methodologies. 
  • Develop comprehensive security reports and presentations for technical and executive audiences. 

Qualifications

Experience & Background: 

  • 5+ years of experience in cybersecurity OR 7+ years in software engineering with a focus on security. 
  • Strong understanding of web application security, cloud security, and API security best practices. 
  • Hands-on experience with application penetration testing (required). 
  • Experience working in cross-functional teams, collaborating with engineers, SREs, and leadership. 

Technical Skills: 

  • Proficiency in application development and scripting (Python preferred; Perl, Go, or Ruby a plus). 
  • Familiarity with public cloud security architectures (AWS, Azure, GCP). 
  • Expertise with security testing tools, including SAST, DAST, and vulnerability assessment platforms. 
  • Experience with CI/CD security best practices and DevSecOps methodologies. 

Preferred Certifications: 

  • OSCP, GPEN, or GWAPT certifications or equivalent experience. 

Physical Demands and Work Environment

The physical demands and work environment characteristics described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. 

  • Physical demands: While performing the duties of this job, the employee is required to walk; stand; sit; use hands to operate standard office equipment; reach with hands and arms; balance; stoop; talk or hear both in person and by telephone. The employee must lift and/or move up to 15 pounds. Vision abilities include close vision, distance vision, and the ability to adjust focus. 
  • Work environment: While performing the duties of this job, the employee works under typical office conditions and is exposed to variable indoor temperatures. The noise level is usually quiet or moderate.  

Similar Jobs

Diligent Corporation - Performance Marketing Manager – SEM

Diligent Corporation

London, England, United Kingdom (Hybrid)
1 Week ago
endava - Senior Business Analyst (Payments Industry)

endava

São Paulo, State Of São Paulo, Brazil (On-Site)
2 Months ago
Barracuda - Director, Product Management

Barracuda

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Thatgamecompany - Live Ops Engineer

Thatgamecompany

United States (Remote)
4 Months ago
Reveal - Instructional Designer – Sales Enablement

Reveal

Chicago, Illinois, United States (On-Site)
3 Weeks ago
Rockstar Games - Senior Security Engineer (C++)

Rockstar Games

Edinburgh, Scotland, United Kingdom (On-Site)
1 Month ago
AeroSpike - Security Engineer, Network, Application & Incident Management

AeroSpike

Mountain View, California, United States (On-Site)
3 Weeks ago
Plaid  - Software Engineer - Security Engineering

Plaid

New York, United States (On-Site)
1 Week ago
Siemens  - Senior Cybersecurity Expert (M365)

Siemens

Bengaluru, Karnataka, India (Hybrid)
1 Week ago
bytedance - Software Engineer, Security Operation Center

bytedance

San Jose, California, United States (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Lytx,  Inc  - New Acquisitions Sales Manager

Lytx, Inc

United States (Remote)
1 Month ago
Dialpad AI - Account Executive, Commercial

Dialpad AI

Austin, Texas, United States (On-Site)
3 Months ago
C3 IoT - Group Vice President, UKI

C3 IoT

London, England, United Kingdom (On-Site)
3 Weeks ago
Harvey - Enterprise Customer Success Manager, APAC

Harvey

Sydney, New South Wales, Australia (Hybrid)
1 Week ago
appier - Sales Manager, Advertising Solutions

appier

Beijing, China (On-Site)
2 Months ago
USE Insider - Career Revolution: Hi-Tech

USE Insider

Istanbul, İstanbul, Türkiye (On-Site)
1 Week ago
USE Insider - Account Executive - Brazil

USE Insider

State Of São Paulo, Brazil (Hybrid)
2 Months ago
Rippling - Customer Support Supervisor, Core

Rippling

Bengaluru, Karnataka, India (Hybrid)
1 Week ago
Zenoti - Senior Software Engineer (.NET)

Zenoti

Hyderabad, Telangana, India (On-Site)
1 Month ago
Prepared - Business Analyst

Prepared

United States (Remote)
1 Month ago

Get notifed when new similar jobs are uploaded

Jobs in Hillsboro, Oregon, United States

Snap Mobile INC - Account Executive

Snap Mobile INC

Fayetteville, Arkansas, United States (On-Site)
3 Months ago
HCL Tech - Technical Lead - C++, C#

HCL Tech

Massachusetts, United States (On-Site)
2 Months ago
Morning Star - Senior Vice President, Business Development

Morning Star

Chicago, Illinois, United States (Hybrid)
1 Year ago
Shield AI - Staff Engineer, Software Systems Test (R2925)

Shield AI

Dallas, Texas, United States (On-Site)
1 Week ago
lifechruh - Media Relations Manager

lifechruh

Edmond, Oklahoma, United States (On-Site)
8 Months ago
The E.W. Scripps Company - Account Executive

The E.W. Scripps Company

Nashville, Tennessee, United States (Hybrid)
2 Months ago
Mobilityware - Financial Planning and Analyst Manager

Mobilityware

Irvine, California, United States (On-Site)
3 Months ago
Salesforce - Front End Software Engineer, LMTS: Commerce Cloud - POS CMS

Salesforce

San Francisco, California, United States (On-Site)
2 Weeks ago
bytedance - Software Engineer - Spatial Web

bytedance

San Jose, California, United States (On-Site)
3 Months ago
Stord - Continuous Improvement Engineer I

Stord

Las Vegas, Nevada, United States (On-Site)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

appier - Security Engineer

appier

Taipei City, Taiwan (On-Site)
2 Weeks ago
Ion - Vulnerability Management Analyst

Ion

London, England, United Kingdom (On-Site)
1 Month ago
Attio - Staff Engineer [Security, Infrastructure, and Performance]

Attio

London, England, United Kingdom (Hybrid)
2 Weeks ago
CAE - Cybersecurity Systems Engineer

CAE

Binghamton, New York, United States (On-Site)
1 Month ago
Valeo - Cybersecurity Architect

Valeo

Créteil, Île-de-France, France (On-Site)
2 Months ago
Jane Street - Network Automation Engineer, Security

Jane Street

New York, United States (On-Site)
2 Months ago
Tesla - EMEA Security Systems Engineer

Tesla

Berlin, Berlin, Germany (On-Site)
5 Months ago
Qualcomm - Sr Staff Engineer - Security and Access Control

Qualcomm

Bengaluru, Karnataka, India (On-Site)
1 Month ago
CAE - 116388 Cybersecurity Operations - DLP & EDR Specialist

CAE

Montreal, Quebec, Canada (On-Site)
1 Week ago
11 Bit Studios - Senior/Expert Security Specialist (IT)

11 Bit Studios

Warsaw, Masovian Voivodeship, Poland (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Hillsboro, Oregon, United States (Hybrid)

Hillsboro, Oregon, United States (Hybrid)

Hillsboro, Oregon, United States (Hybrid)

Hillsboro, Oregon, United States (On-Site)

View All Jobs

Get notified when new jobs are added by laika games

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug