Senior Information Security Engineer

Summary

Join Yellow Social Interactive as a Senior Information Security Engineer and lead the design, implementation, and optimization of security controls across cloud environments, network, and enterprise systems. You will protect our customers, systems, and IP, ensuring our platform meets high standards. Drive security assessments, oversee threat detection, guide architectural decisions, and play a central role in incident response. Contribute to compliance efforts (e.g., ISO 27001), collaborate with technical teams, and elevate security maturity. This role requires a proactive and player-focused professional. Apply now and be part of our mission to provide exceptional player experiences.

Requirements

• Minimum 5 years of hands-on experience in information security or cloud security engineering roles
• Proven experience designing and implementing security controls across cloud, network, and enterprise environments
• Strong understanding of security principles, frameworks (e.g., ISO 27001, CIS), and technologies across the network, endpoint, application, and cloud stack
• Deep knowledge of cloud security best practices in Google Cloud Platform (GCP)
• Proven experience in configuring and managing SIEM platforms such as Splunk, ELK, or Wazuh for threat detection, correlation, and incident investigation
• Proven experience configuring and administering Zscaler platforms (ZIA/ZPA), including policy design, traffic routing, access control, and troubleshooting
• Experience managing firewall and threat protection platforms, such as Checkpoint and Palo Alto, including segmentation, IPS/IDS, and VPN configuration
• Working knowledge of vulnerability management and compliance tooling, such as Orca Security, Tenable, and asset inventory systems
• Proficient in Identity & Access Management (IAM) technologies including OneLogin or Okta
• Experience integrating IT endpoint and asset management tools for visibility and automation (e.g., JumpCloud, NinjaOne)
• Excellent analytical and problem-solving skills, with strong attention to technical detail and operational context
• Effective communicator and collaborator. Comfortable engaging cross-functional teams, explaining risk, and driving consensus

Responsibilities

• Lead technical security reviews and architecture assessments across cloud, network, and enterprise platforms, ensuring scalable and secure design aligned to ISO 27001, GDPR, and business objectives
• Continuously monitor network and cloud activity using SIEM and threat detection tools (e.g., Splunk, Wazuh, Orca Security, Checkpoint) to detect anomalies and proactively respond to potential threats
• Co-author and continuously refine security policies and procedures, ensuring they remain technically sound and aligned with operational needs and compliance goals
• Support and participate in security incident response, including investigation, root cause analysis, remediation recommendations, and post-incident documentation
• Act as a subject matter expert during incident response and system changes, ensuring risk is clearly articulated to both technical and non-technical audiences
• Configure, manage, and optimise firewall solutions (e.g., Checkpoint, Palo Alto) and cloud security controls to protect network boundaries and enforce segmentation
• Implement, monitor, and manage endpoint security measures including patching, device hardening, and use of platforms like JumpCloud, OneLogin, or NinjaOne
• Develop and maintain security metrics, dashboards, and reports, providing insight into the effectiveness of controls, trends, and areas for improvement
• Collaborate cross-functionally with IT and business units, bringing a security lens to shared initiatives while enabling practical, well-communicated solutions

Benefits

• Competitive salary
• Private Health Insurance
• Flexibility to work remotely
• Training & Opportunities for professional development
• Dynamic and collaborative work environment
• Performance Bonus