Security Engineer

We are looking for a senior security engineer to perform advanced testing on our streaming platform and content delivery systems. The focus is on preventing piracy, testing DRM enforcement, device attestation, and ensuring CDN/WAF resilience against application-layer attacks., Conduct application-layer DDoS testing targeting CDN/WAF systems

Evaluate DRM enforcement and attempt to bypass content protections

Test device attestation mechanisms and security tier enforcement

Provide detailed reports and actionable recommendations to protect premium content

Strong experience in application-layer (L7) security testing

Hands-on knowledge of CDN and WAF testing (CloudFront, Fastly, Akamai)

Deep expertise in DRM systems: Widevine, PlayReady, FairPlay

Experience with device ID attestation and spoofing tests

Proficiency with reverse engineering / debugging tools (Frida, Burp Suite, mitmproxy)

Understanding of video streaming pipelines, secure playback, and encryption

Ability to design and execute realistic attack simulations without impacting network infrastructure

Nice-to-Have Skills / Preferences

Experience with OTT platforms or large-scale video streaming services

Familiarity with mobile and web player security

Knowledge of anti-piracy mechanisms and content protection best practices

Familiarity with DRM license and key management systems