Senior Security Engineer

Wanted: Senior Security Engineer for a Digital Entertainment company in Europe. This is a very rewarding full-time and Hybrid / Remote position.

The chosen candidate will step in as the organization's first dedicated security hire, obtaining a unique opportunity to design, build, and lead the global cybersecurity program from scratch. This high-impact role blends long-term strategic leadership with deep technical execution, providing full ownership over the security architecture of a 100% proprietary, scalable technology platform. Joining an agile, fast-growing international ecosystem, this professional will directly establish foundational cloud and application security baselines while fostering an internal culture of security awareness.

Job Responsibilities:

● Define, develop, and execute the comprehensive cybersecurity strategy, corporate roadmap, and incident response program from the ground up.

● Architect, optimize, and manage cloud and application security baselines across AWS infrastructure and Cloudflare WAF/SIEM layers.

● Integrate advanced automation security tooling (such as SAST and dependency scanning) directly into the CI/CD pipeline and conduct proactive threat modeling during initial design phases.

● Coordinate external penetration testing and compliance audits while partnering with engineering, product, and data protection teams to meet rigorous regulatory frameworks.

Job Requirements:

● At least 5 years of proven professional experience in cybersecurity or information security roles, with a track record of building security functions from scratch or operating in a fast-paced startup environment.

● Strong hands-on expertise in application security principles, secure development life cycles (SDLC), and cloud security architecture within AWS environments.

● Deep familiarity with modern vulnerability assessment tooling, threat landscapes, and security technologies including SIEM, WAF, and automated scanners.

● Solid working knowledge of global compliance, data protection, and regulatory frameworks such as ISO 27001, PCI-DSS, or GDPR.

● Exceptional cross-functional communication skills with professional-level English proficiency; exposure to automation scripting (Python/Bash), infrastructure as code (Terraform), or active certifications (CISSP, CEH, OSCP) is highly advantageous.