Threat Level: green Handler on Duty: Jim Clausing

SANS ISC: InfoSec Jobs InfoSec Jobs

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Application Security Engineer
Company Riot Games
Location Dublin, Ireland
Preferred GIAC Certifications GWEB,GSEC
Travel 0%
Salary Not provided
Contact Name FVTer
Contact Email tvfischer/at/
Expires 2021-03-13

Job Description

Riot Security Engineers and Analysts hold an in-depth knowledge of specific areas of expertise. We don't just focus on breaking things; we support teams across Riot to develop robust security capabilities which help protect player experiences. We relish the opportunity to work with new tech stacks and product teams, each with their own security risk profile and complex challenges.

As an Application Security Engineer, you will work with product teams globally to help build fun, safe and secure experiences for players. Reporting to the Senior Manager of Security Engineering, you will identify application security gaps and own projects to address them. Your deep knowledge of both the technical detail and player impact of security vulnerabilities will help you communicate potential issues to Rioters and improve the security of the player experience.

Build projects that contribute to Application Security’s long-term goals
Mentor junior engineers and help level-up their understanding of Application Security
Establish security test strategies for complex systems, identifying security vulnerabilities
Educate and integrate security in a non-blocking way throughout the development cycle
Develop relationships with engineering teams to understand their application security needs
Help level up our bug bounty program and provide researchers with an elite bug bounty experience
Champion Application Security programs to product leads and engineers
Travel to our Los Angeles office

Required Qualifications:
3+ years of experience in an application/product security role
Experience using web application security testing tools such as Burp Suite and (OWASP) ZAP
Experience implementing and tuning, then helping software teams understand the output from static analysis tools

Desired Qualifications:
Programming experience in C#, C++, Java, JavaScript, Golang or Python
Knowledge of Semmle QL/GitHub Advanced Security for code analysis
Experience developing custom security automation tooling
Experience with AWS security features and vulnerabilities
Experience with Container Security

More details: