Senior Cloud and AppSec Engineer

5 Months ago • 5 Years + • Cyber Security • $104,000 PA - $130,000 PA

Job Summary

Job Description

Seeking a Senior Cloud and AppSec Engineer with 5+ years experience in mobile app security, CDN/WAF expertise, and strong knowledge of cloud services like AWS and GCP. Responsibilities include enhancing security at the cloud level, integrating security into the SDLC process, conducting app security testing, and participating in escalation rotations.
Must have:
  • Mobile App Security
  • CDN/WAF Expertise
  • Cloud Security (AWS/GCP)
  • DevSecOps Practices
Good to have:
  • Cloud Security Posture
  • Dynamic Testing Tools
  • Container Technologies
  • CI/CD Pipelines
Perks:
  • Equity
  • Benefits

Job Details

We’re defining what it means to build and deliver the most extraordinary sports and entertainment experiences. Our global team is trailblazing new markets, developing cutting-edge products, and shaping the future of responsible gaming.

Here, “impossible” isn’t part of our vocabulary. You’ll face some of the toughest but most rewarding challenges of your career. They’re worth it. Channeling your inner grit will accelerate your growth, help us win as a team, and create unforgettable moments for our customers.

The Crown Is Yours

As a Senior Cloud and Application Security Engineer, you'll collaborate closely with Engineering teams to drive and evolve our Secure SDLC and DevSecOps programs. In this role, you'll focus on advancing the security of our cloud workloads, overseeing comprehensive web and mobile security, and proactively identifying and mitigating emerging threats. Your work will be instrumental in shaping our security strategies and contributing to the continuous growth and resilience of our technology infrastructure.

 

 

What you'll do as a Senior Cloud and Application Security Engineer

  • Manage and enhance security at the CDN, WAF, and cloud levels (AWS, GCP), including DoS/DDoS mitigation, credential-stuffing prevention, and overall cloud security posture improvement.

  • Integrate security into the SDLC process, conducting SAST, DAST, and Secure Code Reviews throughout all development phases.

  • Perform and oversee security reviews for Android and iOS applications, including vulnerability research, reproduction, and remediation.

  • Conduct comprehensive security testing of mobile application workflows (iPhone and Android), addressing identified security issues.

  • Participate in periodic off-hours escalation rotations for application security.

What you'll bring

  • At least 5 years of experience in Information Security, with a strong focus on mobile application security testing for Android and iOS platforms.

  • Proficiency in CDN, WAF, and bot prevention technologies (e.g., Akamai, Fastly, Cloudflare), as well as cloud service providers AWS and GCP.

  • Experience with Cloud Security Posture Management tools such as Wiz, Prisma Cloud, and Lacework, as well as dynamic testing tools like BurpSuite and Zed Attack Proxy (ZAP).

  • Expertise in DevOps practices, including CI/CD pipelines and automation tools (e.g., Terraform, Jenkins, Artifactory, Octopus Deploy), and container technologies like Docker, Kubernetes, and their cloud-managed counterparts (AWS EKS, GCP GKE)

#LI-BF1

Join Our Team

We’re a publicly traded (NASDAQ: DKNG) technology company headquartered in Boston. As a regulated gaming company, you may be required to obtain a gaming license issued by the appropriate state agency as a condition of employment. Don’t worry, we’ll guide you through the process if this is relevant to your role.

The US base salary range for this full-time position is 104,000.00 USD - 130,000.00 USD, plus bonus, equity, and benefits as applicable. Our salary ranges are determined by role, level, and location. The compensation information displayed on each job posting reflects the range for new hire salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range and how that was determined during the hiring process. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Similar Jobs

Semtech - Sr Engineer, Test/ Automation

Semtech

Pune, Maharashtra, India (Hybrid)
4 Months ago
Velotio Technologies - Senior Java Engineer (Node.js & React)

Velotio Technologies

Pune, Maharashtra, India (Remote)
3 Months ago
Behaviour Interactive - Senior BuildOps | BuildOps Sénior·e

Behaviour Interactive

Montreal, Quebec, Canada (Hybrid)
4 Months ago
Syniverse - Lead QA Engineer

Syniverse

Bengaluru, Karnataka, India (Hybrid)
4 Months ago
Smart Food Safe  - Sr Devops Engineer

Smart Food Safe

Bengaluru, Karnataka, India (On-Site)
4 Months ago
PwC - IN_Senior Associate_Zscaler_Managed Services_Advisory_Bangalore

PwC

Bengaluru, Karnataka, India (On-Site)
4 Months ago
Sonar Source - Security Engineer

Sonar Source

Austin, Texas, United States (On-Site)
4 Months ago
Palosade - Founding Threat Research Engineer

Palosade

Pune, Maharashtra, India (Hybrid)
4 Months ago
ION - Network Security Engineer

ION

Rome, Lazio, Italy (Hybrid)
4 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

The Walt Disney Company - Software Engineer II - Cloud Platform Engineer, Big Data Infrastructure

The Walt Disney Company

Seattle, Washington, United States (On-Site)
3 Months ago
Nisum - Senior Automation QE Engineer  - W6366

Nisum

Hyderabad, Telangana, India (Hybrid)
4 Months ago
Evolution - QA Engineer

Evolution

Lisbon, Lisbon, Portugal (On-Site)
7 Months ago
Luxoft - Murex Market Risk Technical BA/ SME

Luxoft

Bengaluru, Karnataka, India (On-Site)
3 Months ago
Qventus,  Inc  - QA Functional Tester

Qventus, Inc

Noida, Uttar Pradesh, India (Hybrid)
4 Months ago
Assystems - Ingénieur DevOps - H/F

Assystems

Lyon, Auvergne-Rhône-Alpes, France (On-Site)
3 Months ago
The Walt Disney Company - Lead Software Engineer (Roku/BrightScript)

The Walt Disney Company

Seattle, Washington, United States (On-Site)
3 Months ago
Freejam - Senior Backend Game Programmer (Remote or studio based)

Freejam

Portsmouth, England, United Kingdom (Remote)
6 Months ago
HP - Software Quality Assurance

HP

Bengaluru, Karnataka, India (On-Site)
3 Months ago
Aera Technology - Senior QA Automation Engineer

Aera Technology

Pune, Maharashtra, India (On-Site)
6 Months ago

Get notifed when new similar jobs are uploaded

Jobs in United States

Onward Search - Partnership Coodinator

Onward Search

Los Angeles, California, United States (On-Site)
3 Months ago
Trek - Sales Associate - Part Time

Trek

Dallas, Texas, United States (On-Site)
5 Months ago
Nagarro - Senior Staff Engineer, CRM Salesforce

Nagarro

New York, New York, United States (On-Site)
4 Months ago
Zoox - Senior/Staff Software Engineer - 3D World Generation Pipelines

Zoox

Seattle, Washington, United States (Hybrid)
4 Months ago
Netflix - Machine Learning Intern - Spring or Summer 2025

Netflix

Los Gatos, California, United States (On-Site)
3 Months ago
Fabric - Director, Systems Engineering (Chinese/English bi-lingual)

Fabric

Irvine, California, United States (On-Site)
4 Months ago
Google - Software Engineer, Android, Google Voice

Google

Durham, North Carolina, United States (On-Site)
3 Months ago
Postman - Senior Product Marketing Manager (Content)

Postman

San Francisco, California, United States (On-Site)
4 Months ago
Insight Global - Senior Technical Artist

Insight Global

United States (Remote)
5 Months ago
DraftKings - Chargeback Recovery Associate

DraftKings

United States (Remote)
3 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Kenvue - OT Security Engineer

Kenvue

Bengaluru, Karnataka, India (Hybrid)
4 Months ago
Palo Alto Networks - Domain Consultant

Palo Alto Networks

Charlotte, North Carolina, United States (Remote)
3 Months ago
PwC - Cybersecurity Manager (SOC and IR)

PwC

Singapore (On-Site)
4 Months ago
Google - Operations Support Manager

Google

(On-Site)
3 Months ago
Barracuda Networks  Inc  - Channel Solution Architect

Barracuda Networks Inc

Georgia (Hybrid)
3 Months ago
ByteDance - Cloud Security Solution Architect, APAC

ByteDance

Singapore (On-Site)
3 Months ago
Ubisoft - Physical Security Analyst

Ubisoft

Bucharest, Bucharest, Romania (Hybrid)
4 Months ago
PwC - Project Manager Security Testing

PwC

Amsterdam, North Holland, Netherlands (On-Site)
4 Months ago
PwC - IN- Senior Associates_SAP Security_Enterprise Apps SAP_Advisory_Bhopal

PwC

Bhopal, Madhya Pradesh, India (On-Site)
4 Months ago
Google - Program Manager III, Security, Google Cloud

Google

Sunnyvale, California, United States (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)

Sofia, Sofia City Province, Bulgaria (On-Site)

United States (Remote)

Boston, Massachusetts, United States (On-Site)

Boston, Massachusetts, United States (On-Site)

Raleigh, North Carolina, United States (On-Site)

United States (Remote)

Boston, Massachusetts, United States (On-Site)

View All Jobs

Get notified when new jobs are added by DraftKings

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug