Application Security Engineer

Summary

Join Immutable, a leading global technology company revolutionizing the gaming industry on Ethereum, as an Application Security Engineer. You will play a crucial role in ensuring the security of our products by implementing and maintaining security controls, collaborating with engineering teams, and mitigating risks. This position involves vulnerability management, security assessments, and integrating security best practices into development lifecycles. You will report to the Head of Security and contribute significantly to safeguarding Immutable's ecosystem. We offer competitive salaries, employee stock options, flexible work arrangements, and various benefits to support your professional and personal well-being.

Requirements

• Strong knowledge of web application vulnerabilities and their exploitation methods (e.g., OWASP Top 10)
• Proficiency in one or more programming languages (e.g., Python, Golang) to automate security tasks and improve workflows
• Extensive experience in security roles, with a focus on application security, vulnerability management, or automation

Responsibilities

• Operate and improve our vulnerability management program by identifying, triaging, and mitigating security risks across our platform
• Automate security controls to ensure efficient and effective detection, response, and remediation of vulnerabilities
• Conduct security assessments and application reviews, identifying weaknesses and ensuring best practices in web application security
• Collaborate with engineering teams to integrate security best practices into development lifecycles
• Support security research initiatives, including bug bounty programs and responsible disclosure processes

Preferred Qualifications

• A curious mindset and passion for security, demonstrated through self-driven learning, research, or hands-on experience in security projects
• Familiarity with DevOps security principles, including Kubernetes (K8s), AWS, Terraform, and infrastructure-as-code security practices
• Experience in triaging and analyzing security vulnerabilities, such as through bug bounty programs or responsible disclosures

Benefits

• We commit to paying globally competitive salaries and contributions & we share our products' success through Employee Stock Options
• We also support our US Employees with Medical and 401K Insurance
• Our flexible working model blends the best of both worlds: Sydney-based employees enjoy three days a week in our vibrant head office, while remote team members can work from home or utilise access to global office hubs via a WeWork All-Access pass
• We offer USD $500 WFH allowance to set up your home office and USD $600 per annum to put toward your internet and phone usage
• We offer up to USD $1,350 per annum for any classes, courses or events to support your growth and development
• Enjoy access to free online courses via Udemy
• Enjoy USD $800 per year to put toward your health and wellbeing
• Get 24/7 access to unlimited counselling for you and your family when you need it through our EAP Service
• Monthly subsidy and discounted rate with ClassPass, including a 1-year free membership to Breethe
• New parents receive 12 weeks of paid leave in our gender-neutral offer
• The birthing parent also gets an additional six weeks of leave for rest and recovery leading up to and after birth
• We also offer Miscarriage Leave and extra leave for IVF treatments
• Enjoy 2 additional paid annual leave days at the end of the year and a paid day off for your birthday