Responsibilities:
Are you driven by a genuine passion for integrating security into every layer of development and also have a love for RTS games? At Uncapped Games, we believe in being honest and respectful in all our endeavors. We're on the hunt for a skilled and proactive DevOps Security Engineer to enhance and collaborate on security projects with our established AAA team. This role is pivotal in refining our security practices, tools, containerization, version control, and automation pipelines for our ongoing game projects. If you're someone who places reasoning over ego and is dedicated to the game, we'd love to hear from you.
Perks:
- Opportunity to influence and integrate security practices across various disciplines, all for the love of the game.
- Flexible remote work options.
- Highly creative and collaborative start-up culture that values honesty and respect.
- Support from one of the world’s leading gaming and internet companies.
- Competitive pay and benefits.
What you’ll get to do:
- Define, implement, and maintain secure pipelines, promoting a culture of rapid and safe iteration.
- Design and refine scalable and reliable CI/CD processes with a security-first approach, always keeping the game's best interests at heart.
- Develop and enhance a robust build pipeline, automating secure build/artifact delivery and deployment.
- Use your expertise to identify and mitigate security risks, always prioritizing reasoning over ego.
- Collaborate with the existing team to integrate and improve upon current infrastructure with security best practices.
- Conduct threat modeling and risk assessments, ensuring that potential vulnerabilities are identified and addressed collaboratively.
Lead and participate in security training and awareness initiatives for the development team.
Develop and maintain an incident response plan, ensuring preparedness in the event of a security breach.
Collaborate with other developers to address security concerns at the root and craft lasting solutions, all while maintaining a passion for the project.
Requirements:
What we are looking for:
- A security-focused engineer dedicated to enhancing the security posture throughout the development lifecycle and has a genuine passion for games.
- 3+ years of DevSecOps experience, preferably in the Games or Tech Industry.
- Proficiency with Bash, Python, C#, C++ or at least one interpretive language.
- Experience with secure CI/CD, automation, and orchestration tools such as Jenkins.
- Familiarity with source control systems like Perforce and Git, with an emphasis on secure coding practices.
- Experience with GitHub Enterprise, including setting up and managing organizational policies, advanced branch protection, and security features such as code scanning and secret scanning.
- Experience with IAC (Infrastructure As Code) security best practices and tools like Terraform.
- Deep understanding of Kubernetes security best practices, including pod security policies, network policies, and secrets management.
- Experience with Google Cloud Platform (GCP) security features and best practices, including IAM roles, security groups, and VPC configurations.
- Familiarity with GCP-native tools like Google Kubernetes Engine (GKE), Cloud Security Command Center, and Cloud Audit Logs.
- Knowledge of GDPR and other data privacy regulations.
- Experience in setting up and managing MFA and IAM.
- Understanding of network security and DDoS mitigation strategies.
Pluses:
- Track record of shipping at least one AAA game on PC or console with a strong security posture.
- Experience working with Unity or Unreal with a focus on security.
- Proficiency in containerization and cloud-based services with security configurations.
- Knowledge of configuration management tools like Ansible.
- Experience with secure artifact repositories like Docker Registry.
- Relevant security certifications like CISSP, CEH, etc.
- A degree in engineering, science, or cybersecurity.
- Familiarity with the Secure Game Development Lifecycle (SGDLC).
- Experience with tools and methodologies for penetration testing and vulnerability scanning.
- Strong communication skills and the ability to work collaboratively with both security and non-security personnel.
- Experience with cloud-native security tools and platforms, such as Forseti, OPA/Gatekeeper, or Grafeas.
- Knowledge of container runtime security and tools like gVisor or Falco.
- Understanding of gRPC ecosystem tools and their security implications, such as gRPC-Web, gRPC-Gateway, or Envoy Proxy.
Location State(s)
California
The base pay range for this position in the state(s) above is $72,050 to $224,440 per year. Actual pay is based on market location and may vary depending on job-related knowledge, skills, and experience. A sign on payment, relocation package, and restricted stock units may be provided as part of the compensation package, as well as other medical, financial, and/or other benefits, dependent on the specific position offered.