Platform Security Engineer

Jobgether
yesterday

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Remote

Tech stack

API
Application Firewall
Software System Penetration Testing
Computer Security
Customer Data Management
DDoS Mitigation
Elasticsearch
Fraud Prevention and Detection
Network Security
Log Analysis
OAuth
OpenID
Open Web Application Security
Openid Connect
Akamai
Standard Sql
Secure Coding
Session Management
Software Vulnerability Management
Cloud Platform System
Software Security
Rate Limiting
Cloudflare
Api Gateway

Job description

As a Platform Security Engineer, you will play a key role in protecting large-scale digital products used by a global audience. Working across engineering, infrastructure, and security teams, you will strengthen platform defenses, safeguard customer data, and proactively address emerging threats. This position offers the opportunity to lead critical security initiatives, influence secure development practices, and improve incident response capabilities. You will contribute to building resilient systems while supporting a collaborative, security-first engineering culture. Ideal for an experienced security professional, this role combines hands-on technical work with strategic leadership in a dynamic, fast-paced environment. Accountabilities:

  • Strengthen and maintain perimeter and network security controls, including web application firewalls (WAF), rate limiting, anti-bot protections, and DDoS mitigation strategies.
  • Secure APIs against abuse, malicious traffic, and common vulnerabilities while improving authentication, authorization, and access control mechanisms.
  • Lead the vulnerability management lifecycle by identifying, prioritizing, tracking, and validating remediation of security issues.
  • Coordinate external penetration testing engagements and ensure timely resolution of identified findings.
  • Drive incident response activities for product security events and collaborate with monitoring teams to improve detection and response capabilities.
  • Partner with cross-functional teams on fraud prevention, trust and safety initiatives, and customer data protection through encryption, masking, and secure access controls.
  • Promote secure development practices by managing Security Champions and Bug Bounty programs while increasing security awareness across engineering teams.

Requirements

  • At least 5 years of experience in information security, including a minimum of 3 years focused on product security.
  • Hands-on expertise managing Web Application Firewalls such as Wallarm, Akamai, or Cloudflare.
  • Strong understanding of API security principles, including the OWASP API Security Top 10 and API gateway technologies.
  • Experience implementing anti-bot solutions using behavioral analysis and fingerprinting techniques.
  • Practical knowledge of DDoS protection across Layers 3-7 and modern network defense strategies.
  • Experience managing vulnerability management programs, including CVSS scoring, remediation prioritization, and service level tracking.
  • Familiarity with coordinating penetration testing engagements and interpreting security assessment reports.
  • Solid understanding of OAuth, OpenID Connect (OIDC), JWT, session management, and modern authentication frameworks.
  • Working knowledge of SQL and Elasticsearch for security investigations, log analysis, monitoring, and reporting.
  • Strong analytical, communication, collaboration, and problem-solving skills with the ability to work effectively across distributed engineering teams.

Benefits & conditions

  • Competitive compensation, with salary details shared during the recruitment process.
  • Flexible full-time working arrangement.
  • 28 days of annual paid vacation.
  • 7 additional wellness days each year for personal wellbeing and recovery.
  • Employee referral bonuses of up to $5,000 for successful hires.
  • Reimbursement covering 50% of approved professional training, conferences, and industry events.
  • Corporate discounts for English language courses.
  • Health benefit reimbursement of up to $1,000 gross per year for eligible medical expenses or private health insurance.
  • Home office and workspace support, including equipment or reimbursement of up to $1,000 gross every three years for remote workspace setup.
  • Internal employee recognition program with redeemable rewards, merchandise, wellness experiences, and team-building activities.

Apply for this position