Senior Cyber Security Engineer

3 Weeks ago • 4-8 Years • Cyber Security

Job Summary

Job Description

Roof Stacks seeks a Senior Cyber Security Engineer to lead their application security program. Responsibilities include directing application security initiatives, mentoring the platform team, managing vulnerability management, championing secure development lifecycle practices, maintaining robust security architecture, implementing threat modeling, enhancing security tools in the CI/CD pipeline, conducting penetration testing, ensuring secure multi-cloud configurations (AWS, Google Cloud, Azure), developing containerized application security best practices, leading incident response, and performing security audits. The ideal candidate possesses extensive experience leading application security teams in SaaS environments, strong communication and analytical skills, deep knowledge of application security risks (OWASP Top 10), cloud security expertise, penetration testing proficiency, and experience with SIEM systems. Relevant certifications are a plus.
Must have:
  • Lead application security teams in SaaS
  • Deep knowledge of OWASP Top 10
  • Cloud security expertise (AWS, Azure, GCP)
  • Penetration testing proficiency
  • Vulnerability management
  • Secure development lifecycle
Good to have:
  • SIEM experience
  • Containerization & cloud-native security
  • Relevant certifications (CISSP, etc.)
  • Incident response leadership

Job Details

As Roof Stacks, we have been carrying out innovative projects since 2015. We aim to become a global actor in Tourism Systems, Extended Reality(AR/VR), Blockchain Technologies, Game Development, and Financial Technology, which are our areas of expertise.

We focus on creating a difference with the technologies we develop and designing the future. In addition to our central office in Ataşehir/İstanbul, we have branches in Antalya and Elazığ in Turkey.

We have strengthened our position in the global market by opening a new office in Austin, USA, which hosts world technology giants from all over the world.

Job requirements:

Requirements:
• Extensive experience leading application security teams, preferably within SaaS environments.
• Exceptional communication and interpersonal abilities, capable of effectively collaborating with multidisciplinary teams.
• Advanced analytical and management skills.
• Deep knowledge of common application security risks, such as those listed in the OWASP Top 10, and best practices in secure coding.
• Expertise in cloud security services across AWS, Google Cloud, and/or Azure, including IAM, key management, and secure networking practices.
• Proficiency with penetration testing tools and techniques.
• Experience in Security Incident management and/or operating within a SOC (Security Operations Center), including familiarity with SIEM systems, is advantageous.
• Familiarity with containerization and cloud-native security tools (e.g., AWS Security Hub, Google Security Command Center, Azure Defender).
• Relevant professional certifications (e.g., CISSP, CISM, SANS GIAC, OSCP, AWS Security Specialty, Google Professional Cloud Security Engineer) are beneficial.
• Proficient in both written and spoken English.
• Prior remote work experience is not mandatory but is considered an asset.

Key Responsibilities:

Key Responsibilities:
• Direct and oversee the application security program, ensuring it aligns with the broader Security strategy.
• Support the platform team in their day-to-day operations, projects, and personal development through guidance and mentorship.
• Manage the vulnerabilities management process in close collaboration with the Engineering teams, providing important metrics to the Security Director.
• Champion the adoption of Secure Development Life Cycle practices within the Platform Engineering team.
• Maintain robust security architecture across Platform, Data, Development, and Product teams.
• Implement threat modeling practices into product design and development processes.
• Aid in the enhancement and upkeep of security tools used in the CI/CD pipeline.
• Organize and facilitate penetration testing activities, including defining the scope, planning, and analyzing outcomes.
• Collaborate with infrastructure and cloud teams to ensure secure configurations across multi-cloud environments, including AWS, Google Cloud, and Azure.
• Develop and implement security best practices for containerized applications and orchestration tools (Docker, Kubernetes, GKE, AKS).
• Provide leadership in incident response processes, ensuring robust cloud-based security incident management and recovery procedures.
• Conduct regular audits of cloud security configurations, ensuring compliance with industry standards and frameworks.

Similar Jobs

Netflix - Solutions Support Engineer (L5) - Delivery

Netflix

Poland (Remote)
4 Hours ago
GoReel - Manual QA Engineer

GoReel

Bratislava, Bratislava Region, Slovakia (Hybrid)
6 Hours ago
Virtuos - Senior/Lead Software Engineer

Virtuos

China (On-Site)
3 Weeks ago
Electronic Arts - Software Engineer III

Electronic Arts

Hyderabad, Telangana, India (On-Site)
2 Weeks ago
Irdeto - Senior Software Engineer in Test

Irdeto

Noida, Uttar Pradesh, India (Hybrid)
7 Months ago
PwC - Manager / Senior Manager Cyber Technology and Transformation

PwC

Zürich, Zurich, Switzerland (On-Site)
6 Months ago
ByteDance - Security Engineer, Security Assurance

ByteDance

Singapore (On-Site)
3 Weeks ago
ByteDance - Site Reliability Engineer, SealSuite

ByteDance

Singapore (On-Site)
2 Days ago
PwC - ETIC, Winter Internship Program - Cybersecurity

PwC

Cairo, Cairo Governorate, Egypt (On-Site)
5 Months ago
PwC - IN-Manager_AWS Engineer_Advisory Corporate_Advisory_Bangalore

PwC

Bengaluru, Karnataka, India (On-Site)
6 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Warner Bros Games - Senior Analytics Engineer

Warner Bros Games

(Hybrid)
1 Month ago
Playrix - Lead QA Engineer

Playrix

Georgia (Remote)
5 Months ago
Playtika - PHP Developer

Playtika

Poland (Hybrid)
5 Months ago
Playdead - DevOps Engineer

Playdead

Copenhagen, Denmark (On-Site)
6 Months ago
IManage - Full Stack Senior Developer (ReactJS, NodeJS)

IManage

Bengaluru, Karnataka, India (Hybrid)
6 Months ago
Fortis Games - Sr. QA Engineer

Fortis Games

Canada (On-Site)
2 Months ago
Nagarro - Associate Staff Engineer

Nagarro

(Remote)
1 Month ago
DOTSOFT SA - Full-Stack Web Developer

DOTSOFT SA

Greece (Remote)
1 Week ago
CloudHire - Full Stack Developer - React and Node

CloudHire

Pune, Maharashtra, India (Remote)
3 Weeks ago
Aristocrat Gaming - CI/CD Specialist

Aristocrat Gaming

Montreal, Quebec, Canada (Hybrid)
3 Weeks ago

Get notifed when new similar jobs are uploaded

Jobs in İstanbul, İstanbul, Türkiye

USE Insider - Global Rewards Specialist (Hybrid)

USE Insider

İstanbul, İstanbul, Türkiye (On-Site)
6 Months ago
Ruby game studio - Senior Game Developer

Ruby game studio

İzmir, İzmir, Türkiye (On-Site)
3 Weeks ago
Spyke Games - Illustrator

Spyke Games

İstanbul, Türkiye (On-Site)
7 Months ago
Fugo Games - 2D Animator

Fugo Games

İstanbul, Türkiye (On-Site)
1 Month ago
Azerion - Cloud Engineer

Azerion

Ankara, Türkiye (Hybrid)
20 Hours ago
RoofStack - Senior Game Designer

RoofStack

İstanbul, İstanbul, Türkiye (On-Site)
1 Month ago
Voodoo - Marketing Video Artist - Gaming

Voodoo

İstanbul, Türkiye (On-Site)
3 Weeks ago
ByteDance - Account Executive - Innovative Technical Sales

ByteDance

İstanbul, Türkiye (On-Site)
5 Months ago
RoofStack - Level Designer

RoofStack

İstanbul, İstanbul, Türkiye (On-Site)
1 Month ago
Paxie Games - Sr. Game Developer

Paxie Games

Göztepe, İstanbul, Türkiye (On-Site)
5 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Normalyze - Customer Success Engineer - Data Security - Implementation - DSPM - Bangalore

Normalyze

Bengaluru, Karnataka, India (Remote)
6 Months ago
ByteDance - Global Head of Solution Architect, SealSuite

ByteDance

Singapore (On-Site)
3 Months ago
ION - Intermediate IT Auditor, Italy

ION

Collecchio, Emilia-Romagna, Italy (On-Site)
6 Months ago
Fluence - Cybersecurity Engineer (m/f/d)

Fluence

Erlangen, Bavaria, Germany (Hybrid)
6 Months ago
PwC - Workday reporting Sr.

PwC

Buenos Aires, Buenos Aires, Argentina (On-Site)
6 Months ago
ION - Markets Platform Security Engineer - US

ION

Toronto, Ontario, Canada (On-Site)
6 Months ago
Mattel  Inc  - Manager GRC

Mattel Inc

California, United States (On-Site)
4 Months ago
Notion - Application Security Engineer

Notion

San Francisco, California, United States (On-Site)
5 Months ago
PwC - Financial Sector Information Protection Consultant

PwC

Amsterdam, North Holland, Netherlands (Hybrid)
3 Months ago
Electronic Arts - Senior Specialist Global Security Contracts

Electronic Arts

Bucharest, Bucharest, Romania (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

About The Company

İstanbul, İstanbul, Türkiye (On-Site)

İstanbul, İstanbul, Türkiye (Hybrid)

İstanbul, İstanbul, Türkiye (On-Site)

İstanbul, İstanbul, Türkiye (On-Site)

View All Jobs

Get notified when new jobs are added by Roofstacks

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug