Application Security Engineer
About Us
Immutable is a global tech company revolutionizing game development on the Ethereum platform. Established in 2018, Immutable has swiftly attained unicorn status in Australia, raising over AUD $300M with a valuation of AUD $3.5 billion.
The Immutable Group consists of the leading platform for building Ethereum games, powering successful titles like RavenQuest and Immortal Rising 2, and Immutable Games, a key player in web3 game development with acclaimed titles such as Gods Unchained and Guild of Guardians.
We aim to realize digital worlds in a tangible way and are poised for significant global growth, with plans to be the fastest-growing gaming chain by 2024, having signed on 250+ games – more than the cumulative total from previous years combined.
About The Role
Security is paramount at Immutable. As an Application Security Engineer, you will be instrumental in ensuring the safety of our products for all users. Your focus will be on establishing and maintaining robust security controls while balancing user experience and operational efficiency.
This position is critical for supporting our security operations and vulnerability management program. Working closely with engineering teams, you will mitigate risks and enhance security processes, reporting to our Head of Security and playing a pivotal role in safeguarding the Immutable ecosystem.
Key Responsibilities
- Enhance our vulnerability management program by identifying, assessing, and mitigating security risks across our platform.
- Automate security controls for efficient detection, response, and remediation of vulnerabilities.
- Conduct security assessments and reviews to identify weaknesses and promote best practices in web application security.
- Collaborate with engineering teams to integrate security best practices into development processes.
- Contribute to security research initiatives including bug bounty programs and responsible disclosure procedures.
Qualifications
- Deep understanding of web application vulnerabilities and exploitation methods (e.g., OWASP Top 10).
- Proficiency in programming languages (e.g., Python, Golang) to automate security tasks and enhance workflows.
- A proactive and security-oriented mindset shown through self-driven learning, research, or hands-on engagement in security projects.
- Extensive experience in security positions with emphasis on application security, vulnerability management, or automation.
- Familiarity with DevOps security principles, e.g., Kubernetes, AWS, Terraform, and infrastructure-as-code security practices.
- Experience in analyzing and prioritizing security vulnerabilities, such as through bug bounty programs.
Additional Benefits
Our global employee benefits include competitive salaries, stock options, medical insurance, flexible working arrangements, wellness allowances, continuous learning support, access to mental health services, substantial parental leave, birthday leave, and more.
Diversity & Inclusion
We are dedicated to an inclusive and diverse work environment, valuing varied perspectives as integral to our ongoing success.
Note: Immutable appreciates applications from all candidates directly and does not accept unsolicited agency resumes.
Join us in shaping the future of web3 gaming!
