Senior Cyber Security Engineer

3 Months ago • 4-8 Years • Cyber Security

Job Summary

Job Description

Roof Stacks seeks a Senior Cyber Security Engineer to lead and oversee their application security program. Responsibilities include directing application security initiatives, supporting platform teams, managing vulnerability management, championing secure development practices, maintaining robust security architecture, implementing threat modeling, enhancing security tools within the CI/CD pipeline, organizing penetration testing, ensuring secure cloud configurations (AWS, Google Cloud, Azure), developing secure practices for containerized applications, leading incident response, and conducting regular security audits. The ideal candidate will have extensive experience in application security, strong communication skills, deep knowledge of OWASP Top 10, cloud security expertise, penetration testing proficiency, and relevant certifications.
Must have:
  • Extensive application security experience (SaaS)
  • Strong communication & collaboration skills
  • Deep knowledge of OWASP Top 10 & secure coding
  • Cloud security expertise (AWS, GCP, Azure)
  • Penetration testing proficiency
  • Vulnerability management experience
Good to have:
  • SIEM experience
  • Containerization & cloud-native security tools
  • Relevant certifications (CISSP, etc.)
  • Incident response experience

Job Details

As Roof Stacks, we have been carrying out innovative projects since 2015. We aim to become a global actor in Tourism Systems, Extended Reality(AR/VR), Blockchain Technologies, Game Development, and Financial Technology, which are our areas of expertise.

We focus on creating a difference with the technologies we develop and designing the future. In addition to our central office in Ataşehir/İstanbul, we have branches in Antalya and Elazığ in Turkey.

We have strengthened our position in the global market by opening a new office in Austin, USA, which hosts world technology giants from all over the world.

Job requirements:

Requirements:
• Extensive experience leading application security teams, preferably within SaaS environments.
• Exceptional communication and interpersonal abilities, capable of effectively collaborating with multidisciplinary teams.
• Advanced analytical and management skills.
• Deep knowledge of common application security risks, such as those listed in the OWASP Top 10, and best practices in secure coding.
• Expertise in cloud security services across AWS, Google Cloud, and/or Azure, including IAM, key management, and secure networking practices.
• Proficiency with penetration testing tools and techniques.
• Experience in Security Incident management and/or operating within a SOC (Security Operations Center), including familiarity with SIEM systems, is advantageous.
• Familiarity with containerization and cloud-native security tools (e.g., AWS Security Hub, Google Security Command Center, Azure Defender).
• Relevant professional certifications (e.g., CISSP, CISM, SANS GIAC, OSCP, AWS Security Specialty, Google Professional Cloud Security Engineer) are beneficial.
• Proficient in both written and spoken English.
• Prior remote work experience is not mandatory but is considered an asset.

Key Responsibilities:

Key Responsibilities:
• Direct and oversee the application security program, ensuring it aligns with the broader Security strategy.
• Support the platform team in their day-to-day operations, projects, and personal development through guidance and mentorship.
• Manage the vulnerabilities management process in close collaboration with the Engineering teams, providing important metrics to the Security Director.
• Champion the adoption of Secure Development Life Cycle practices within the Platform Engineering team.
• Maintain robust security architecture across Platform, Data, Development, and Product teams.
• Implement threat modeling practices into product design and development processes.
• Aid in the enhancement and upkeep of security tools used in the CI/CD pipeline.
• Organize and facilitate penetration testing activities, including defining the scope, planning, and analyzing outcomes.
• Collaborate with infrastructure and cloud teams to ensure secure configurations across multi-cloud environments, including AWS, Google Cloud, and Azure.
• Develop and implement security best practices for containerized applications and orchestration tools (Docker, Kubernetes, GKE, AKS).
• Provide leadership in incident response processes, ensuring robust cloud-based security incident management and recovery procedures.
• Conduct regular audits of cloud security configurations, ensuring compliance with industry standards and frameworks.
undefinedundefinedundefined

Similar Jobs

Hedra - Senior Frontend Engineer

Hedra

New York, New York, United States (On-Site)
4 Weeks ago
PwC - D&A - GDC

PwC

Kolkata, West Bengal, India (On-Site)
6 Months ago
Arrise Solutions (India)   - Senior ML Engineer

Arrise Solutions (India)

Hyderabad, Telangana, India (On-Site)
7 Months ago
GoReel - Manual QA Engineer

GoReel

Bratislava, Bratislava Region, Slovakia (Hybrid)
1 Week ago
Google - Senior Solutions Acceleration Architect, Application

Google

Beijing, Beijing, China (On-Site)
1 Week ago
PwC - IN_Senior Associate - Social Management-Citizen Services-Advisory- Jaipur

PwC

Jaipur, Rajasthan, India (On-Site)
6 Months ago
PwC - Internship program - Cybersecurity and Privacy

PwC

Bangkok, Bangkok, Thailand (On-Site)
6 Months ago
Google - Senior Staff Engineer, Fullstack, Security Defense Platforms

Google

Hyderabad, Telangana, India (On-Site)
1 Week ago
SmileGate - Security Threat and Incident Analysis

SmileGate

Seongnam-si, Gyeonggi-do, South Korea (On-Site)
4 Weeks ago
Trend Micro - (Sr.) Cloud Developer (Security Playbooks)

Trend Micro

Taipei City, Taiwan (On-Site)
6 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

ByteDance - Cloud Site Reliability Engineer

ByteDance

San Jose, California, United States (On-Site)
1 Week ago
Playrix - Senior QA Automation Engineer (Mobile)

Playrix

Georgia (Remote)
6 Months ago
Anavation - Senior Software Engineer

Anavation

Colorado Springs, Colorado, United States (Remote)
1 Day ago
NVIDIA - Senior Site Reliability Engineer - GPU Clusters

NVIDIA

Austin, Texas, United States (On-Site)
1 Month ago
ION - Cloud Engineer Kubernetes

ION

Rome, Lazio, Italy (Hybrid)
6 Months ago
Google - Software Engineer, Engineering Productivity, Google Cast

Google

New Taipei City, Taiwan (On-Site)
1 Week ago
Playrix - Middle C++ Software Engineer (Gameplay)

Playrix

Serbia (Remote)
6 Months ago
GoTo Group - Principal Engineer - Transport

GoTo Group

Bengaluru, Karnataka, India (On-Site)
6 Months ago
N-iX - Middle Full-Stack Engineer (React Native + NodeJS)

N-iX

Ukraine (Remote)
1 Week ago
Inworld AI - Staff Platform Engineer, MLOps

Inworld AI

Vancouver, British Columbia, Canada (On-Site)
5 Days ago

Get notifed when new similar jobs are uploaded

Jobs in İstanbul, İstanbul, Türkiye

Magic Games - 2D Game Artist

Magic Games

İstanbul, İstanbul, Türkiye (On-Site)
2 Days ago
USE Insider - People and Culture / Recruiter (Hybrid)

USE Insider

İstanbul, İstanbul, Türkiye (On-Site)
6 Months ago
USE Insider - Management Trainee for Chief Revenue Officer | Revenue Operations Team

USE Insider

İstanbul, İstanbul, Türkiye (On-Site)
6 Months ago
RoofStack - Senior UI/UX Designer

RoofStack

İstanbul, İstanbul, Türkiye (Hybrid)
3 Months ago
RoofStack - Genel Başvuru- Engelli

RoofStack

İstanbul, İstanbul, Türkiye (Hybrid)
3 Months ago
Trendyol - Backend Developer

Trendyol

İzmir, İzmir, Türkiye (Hybrid)
6 Months ago
Dream Games - Senior IT Specialist

Dream Games

İstanbul, Türkiye (On-Site)
8 Months ago
USE Insider - Digital Sales Development Representative

USE Insider

İstanbul, İstanbul, Türkiye (On-Site)
6 Months ago
Codeway - Marketing Artist

Codeway

İstanbul, Türkiye (On-Site)
3 Months ago
RoofStack - Mechanical Engineer

RoofStack

Kahramanmaraş, Kahramanmaraş, Türkiye (On-Site)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

ByteDance - Software Engineer Intern, Security Engineering

ByteDance

Singapore (On-Site)
1 Month ago
PwC - Project Manager Security Testing

PwC

Amsterdam, North Holland, Netherlands (On-Site)
3 Months ago
Animoca Brands - Security Operations Engineer

Animoca Brands

Hong Kong (On-Site)
3 Months ago
Trend Micro - Automotive Research Engineer - Threat Intelligence & Content Creation (VicOne)

Trend Micro

Taipei City, Taiwan (On-Site)
6 Months ago
Trend Micro - Sr. Engineer

Trend Micro

Taipei City, Taiwan (On-Site)
6 Months ago
ByteDance - Software Engineer Intern, Authorization

ByteDance

Singapore (On-Site)
1 Month ago
Google - Technical Solutions Engineer, Security, Google Cloud

Google

Warsaw, Masovian Voivodeship, Poland (On-Site)
1 Week ago
Netflix - Software Engineer (L5) - Security Platforms Engineering

Netflix

United States (Remote)
1 Week ago
Assystems - SOC L1 Analyst

Assystems

Gurugram, Haryana, India (On-Site)
5 Months ago

Get notifed when new similar jobs are uploaded

About The Company

At Roofstacks, we are not content with simply innovating; we are committed to pushing the frontiers of technology. Since our establishment in 2015, we have skillfully integrated conventional systems with cutting-edge solutions, raising the standard in industries such as tourism, metaverse, AR, gaming, blockchain, and fintech.


İstanbul, İstanbul, Türkiye (Hybrid)

İstanbul, İstanbul, Türkiye (On-Site)

İstanbul, İstanbul, Türkiye (On-Site)

İstanbul, İstanbul, Türkiye (Hybrid)

İstanbul, İstanbul, Türkiye (On-Site)

Kahramanmaraş, Kahramanmaraş, Türkiye (On-Site)

İstanbul, İstanbul, Türkiye (On-Site)

İstanbul, İstanbul, Türkiye (On-Site)

İstanbul, İstanbul, Türkiye (On-Site)

View All Jobs

Get notified when new jobs are added by RoofStack

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug