Outscal Logooutscal logo

Offensive Security Specialist

11 Hours ago • 3 Years + • Cyber Security

Job Summary

Job Description

As an Offensive Security Specialist at Xsolla, you'll strengthen the company's security posture by conducting penetration testing in Blackbox and Greybox environments. You'll collaborate with developer teams, secure payment systems and core services, and contribute to security code reviews and SDLC automation. Responsibilities include identifying and investigating vulnerabilities, conducting security assessments, participating in bug bounty programs, and developing security training. Proficiency in Linux, PHP/JavaScript, OWASP, BurpSuite, and penetration testing is essential. The role requires strong collaboration skills and a proactive approach to addressing security challenges.
Must have:
  • Penetration testing (Blackbox/Greybox)
  • Linux, PHP/JavaScript, OWASP
  • BurpSuite/OWASP ZAP
  • Web application security expertise
  • Collaboration with developers
  • Vulnerability identification & mitigation

Job Details

ABOUT YOU

Join Xsolla as an Offensive Security Specialist, where you’ll dive deep into our infrastructure, architecture, services, and tools to strengthen our security posture. This role offers an exciting opportunity to conduct rigorous penetration testing across Blackbox and Greybox environments. You’ll work closely with developer teams, contribute to the security of our payment systems, and help secure our core services. If you're passionate about Linux, PHP/JavaScript, OWASP, and BurpSuite, and have the drive to innovate security processes, we want to meet you!

ABOUT US

At Xsolla, we believe that great games begin as ideas, driven by the curiosity, dedication, and grit of creators around the world. Our mission is to empower these visionaries by providing the support and resources they need to bring their games to life. We are committed to leveling the playing field, ensuring that every creator has the opportunity to share their passion with the world. 

Headquartered in Los Angeles, with offices in Berlin, Seoul, and beyond, we partner with industry leaders like Valve, Twitch, and Ubisoft to clear the paths for innovation in gaming. Our global reach spans over 200 geographies, offering more than 700 payment methods in 130+ currencies.

Longevity Opportunity Vision Enjoy the game!

RESPONSIBILITIES

    • Familiarize yourself with and master our current infrastructure, services, and tools.
    • Conduct thorough penetration testing of core services in Blackbox and Greybox environments.
    • Identify and investigate vulnerabilities in the company’s products, ensuring they are resolved according to SLAs.
    • Collaborate effectively with product development, IT, and management teams to ensure vulnerabilities are addressed.
    • Conduct security assessments of the company’s service architecture and offer improvement suggestions.
    • Engage in the study of payment systems’ technologies and operations.
    • Assist in the implementation of the security code review process and SDLC automation.
    • Actively participate in the Bug Bounty program and other information security incident investigations.
    • Regularly utilize tools like BurpSuite and various scanners for vulnerability testing and reporting.
    • Develop and conduct training sessions to educate developers on secure coding practices and vulnerability mitigation.
    • Take part in the selection and implementation of new information security systems and processes.

REQUIREMENTS

    • Proficiency in Linux, penetration testing (Blackbox/Greybox), PHP/JavaScript, OWASP, BurpSuite/OWASP ZAP.
    • At least 3 years of relevant experience in application security or a similar role.
    • Strong understanding of web application attacks, how to exploit them, and appropriate defense techniques.
    • Familiarity with manual and automated security analysis tools and experience with SDLC practices.
    • Experience in testing payment systems and an eagerness to learn about their operation and associated technologies.
    • Solid understanding of networking principles and how modern web applications work.
    • Demonstrated ability to work collaboratively with developer teams to mitigate vulnerabilities.
    • Initiative and innovative mindset to create and improve security processes.
    • Strong communication skills and a proactive approach to addressing security challenges.
    • Comfortable with verbal and written communication in English.
By submitting the following job application form, you consent to Xsolla processing your data for career-related inquiries and potential employment opportunities. We process your data in accordance with this Xsolla Privacy Notice for Job Applicants. Please direct any inquiries regarding your data privacy to careers@xsolla.com.

Longevity Opportunity Vision Enjoy the game!

Similar Jobs

Virtuos - Unity C# Senior Software Engineer

Virtuos

Shanghai, Shanghai, China (On-Site)
1 Day ago
C3 AI - Solution Engineer

C3 AI

Bengaluru, Karnataka, India (On-Site)
5 Months ago
USE Insider - Solutions Architect - Indonesia

USE Insider

Jakarta, Jakarta, Indonesia (Hybrid)
5 Months ago
PwC - IN-Senior Associate_.NET with Angular_MS Engg_Advisory_Kolkata

PwC

Kolkata, West Bengal, India (On-Site)
5 Months ago
Seedify - Backend Engineer

Seedify

(Remote)
4 Months ago
PwC - Project Manager Security Testing

PwC

Amsterdam, North Holland, Netherlands (On-Site)
2 Months ago
DNEG - Information Security Analyst

DNEG

Mumbai, Maharashtra, India (On-Site)
1 Month ago
PwC - IN_Senior Associate_Agile PM_Advisory Corporate_Advisory_Pune

PwC

Pune, Maharashtra, India (On-Site)
5 Months ago
InMobiInMobi - Senior Cloud Security Engineer

InMobiInMobi

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Granicus - Senior Security Analyst

Granicus

Bengaluru, Karnataka, India (Hybrid)
5 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

CoolGames - Game Developer Internship

CoolGames

North Holland, Netherlands (Hybrid)
1 Week ago
Salesforce - Full-Stack Software Engineer – Senior/Lead/Principal

Salesforce

San Francisco, California, United States (On-Site)
5 Months ago
PwC - Tester/Testerka automatyzujący/a (freelance)

PwC

Warsaw, Masovian Voivodeship, Poland (Hybrid)
5 Months ago
PwC - Consultant junior SAP Architecture – Cloud - BTP | CDI | H/F

PwC

Neuilly-sur-Seine, Île-de-France, France (On-Site)
5 Months ago
PlayStation Global - Data Software Engineer, Financial Systems

PlayStation Global

Aliso Viejo, California, United States (Hybrid)
11 Hours ago
Nagarro - Staff Engineer, NodeJS

Nagarro

India (Remote)
5 Months ago
Canva - Staff Frontend Engineer - Apps API Platform

Canva

Sydney, New South Wales, Australia (Remote)
2 Weeks ago
CloudHire - Wordpress Full Stack Developer

CloudHire

Karnataka, India (Remote)
1 Week ago
ByteDance - Software Engineer - Programming Language (San Jose, CA)(PhD)

ByteDance

San Jose, California, United States (On-Site)
3 Months ago
Rackspace Technology - Sr Service Now Developer III-IN (R-20074)

Rackspace Technology

India (Remote)
5 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Baku, Azerbaijan

Xsolla - Junior Legal Counsel

Xsolla

Baku, Azerbaijan (Remote)
5 Months ago
Xsolla - Senior QA Engineer

Xsolla

Baku, Azerbaijan (On-Site)
1 Week ago
Xsolla - Tech Lead - Metasites

Xsolla

Baku, Azerbaijan (Hybrid)
2 Months ago
Xsolla - Middle / Senior QA for Xsolla Account

Xsolla

Baku, Azerbaijan (On-Site)
4 Months ago
Xsolla - PHP Backend Developer

Xsolla

Baku, Azerbaijan (Hybrid)
2 Months ago
Xsolla - Tech Lead for Xsolla ID

Xsolla

Baku, Azerbaijan (On-Site)
4 Months ago
Xsolla - Application Security Specialist

Xsolla

Baku, Azerbaijan (On-Site)
4 Months ago
Xsolla - QA Engineer

Xsolla

Baku, Azerbaijan (On-Site)
2 Months ago
N-iX - Senior Data Engineer

N-iX

Azerbaijan (Remote)
1 Day ago
Xsolla - Front End Software Engineer

Xsolla

Baku, Azerbaijan (On-Site)
11 Hours ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Palo Alto Networks - Domain Consultant, SASE

Palo Alto Networks

Riyadh, Riyadh Province, Saudi Arabia (On-Site)
4 Months ago
Mattel  Inc  - Manager GRC

Mattel Inc

California, United States (On-Site)
3 Months ago
Barracuda Networks  Inc  - Information Security Engineer

Barracuda Networks Inc

Bengaluru, Karnataka, India (On-Site)
3 Months ago
Zinnia - Senior Cloud Security Engineer

Zinnia

Noida, Uttar Pradesh, India (Hybrid)
5 Months ago
The Walt Disney Company - Manager Enterprise Security Compliance

The Walt Disney Company

New York, New York, United States (On-Site)
21 Hours ago
PwC - Risk Services, Digital Audit - Senior Associate

PwC

Singapore (On-Site)
5 Months ago
PwC - Manager / Senior Manager Cyber Technology and Transformation

PwC

Zürich, Zurich, Switzerland (On-Site)
5 Months ago
Thatgamecompany - Senior Game Security Engineer - China

Thatgamecompany

Shanghai, Shanghai, China (On-Site)
12 Hours ago
ByteDance - Threat Intelligence Engineer, Security Assurance

ByteDance

Singapore (On-Site)
4 Months ago
ByteDance - Technical Account Manager (Edge Cloud)

ByteDance

Boston, Massachusetts, United States (On-Site)
21 Hours ago

Get notifed when new similar jobs are uploaded

About The Company

Xsolla's video game business engine helps game developers and publishers operate more efficiently and sell more games. Serving only the video game industry, Xsolla caters to businesses from indie to enterprise, with solutions that solve the complexities of distribution, marketing, and monetization so developers, publishers, and platform partners. Our goal is to increase your audience, sales and revenue.


Headquartered in Los Angeles, with offices worldwide, Xsolla operates as a merchant and seller of record for major gaming entities like Valve, Twitch, Ubisoft, Epic Games, and PUBG Corporation. 

Tokyo, Japan (On-Site)

(On-Site)

Hong Kong (On-Site)

Berlin, Berlin, Germany (Hybrid)

Beijing, Beijing, China (On-Site)

Los Angeles, California, United States (Remote)

Maryland, United States (Remote)

Los Angeles, California, United States (Hybrid)

Serbia (Hybrid)

View All Jobs

Get notified when new jobs are added by Xsolla

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug