This job might no longer be available.
Senior Cloud Security Engineer
1 year ago
Who we are
At Fortis Games we aspire to make great games that bring people together while redefining how game companies work. We believe in building a sense of belonging through our games, their communities, and how we operate and treat each other. Through our game communities, we will create powerful connections and lasting memories. We will foster a culture of diversity, equity and belonging where together our diverse skills, experiences and background impact the games we make.
We are an early but mighty organization with a leadership team of game industry veterans. There are many opportunities for you to have a big impact on the products we’ll be making as well as the overall direction of the company. If you’re passionate about tackling difficult problems with direct and thoughtful communication and team first mentality, we may be the right place for you.
About the role
Fortis Games is hiring for a Sr. Cloud Security Engineer to manage all aspects of the company’s cloud cybersecurity needs.
What you will do
- Own the Cloud Security technology stack and associated processes and procedures using DevSecOps practices
- Write infrastructure as code to deploy new or adjust our existing infrastructure using security best practices to AWS
- Ensure that our cloud infrastructure (AWS) is hardened and continuously monitored
- Lead overall application security for Fortis Games (Application stack is microservices in Kubernetes using typescript or C#
- Write or update our helm templates using ArgoCD to ensure that applications are deployed/configured using security best practices
- Help maintain our build & deployment processes using GitHub actions/helm/ArgoCD
- Provide architectural guidance and leadership on best practices regarding security in software development, shared services, user interface design frameworks, high performance solutions, server-side development, integrations, tools and technologies
- Implement and improving logging, monitoring, and alerting within our applications and infrastructure
- Be a subject matter expert on all things security
- Building world class defensive controls to protect the infrastructure around advanced defense technology products
- Role requires a wide berth with the latitude to design and implement cutting edge security architecture
- Security testing of infrastructure and driving the resolution of issues found
- Monitor for, and remediate security weaknesses and baseline regressions across cloud infrastructure
- Track project progress through project management software such as ClickUp, JIRA, Confluence, and Google Suite
- Build relationships with cross functional teams to execute projects on time and with high quality
- Perform audits and assessments to identify risk and create a remediation plan
- Build reports and communicate security posture to all levels of the organization
- Manage multiple projects concurrently and maintain project & technology-level documentation
Required qualifications
- Comfortable with ambiguity
- Write code and participate in the PR process with other teammates
- Extensive experience with AWS and AWS EKS and using Helm with ArgoCD
- Experience working with internal and external partners and vendors to achieve goals on aggressive timelines
- Experience working on complex projects with multiple stakeholders, timelines, and budgets
- Self-motivated and proactive with demonstrated creative and critical thinking skills
- Excellent communication, organizational, leadership, and collaboration skills
- Prior experience working on a Security Operations, Software Development or Cloud Security team
- Hands-on experience and deep expertise in automating, architecting, maintaining and securing Cloud computing infrastructure (AWS), development platforms, security services/tools (GuardDuty, AWS Config, CloudTrail, etc.), Kubernetes, Open Policy Agent, Secrets Management, and Cloud security posture management (CSPM)
- Experience with container security
- Passionate about cloud security risks management with secure by default configurations, identity and access management, and blast radius reduction
- Experience with Infrastructure as code (CloudFormation, Terraform)
- Skilled with Lambda, API Gateway, Kinesis
- Experience with Redis/PostgreSQL over AWS and Kafka as a service
- Experience with international security and privacy requirements such as GDPR
- Understand how to address security flaws
- Good communication, organization, time-management, and prioritization skills
- Operations experience in running and maintaining software, operating a large cloud deployment, or creating and triaging alerts around the health and security of our systems
- Work well with other people, see the value of a team, and partner effectively with all stakeholders
- Aim to always be learning new things and share this passion with those around you
Bonus Skills
- Prior experience at a mobile gaming organization a plus
***Please submit resumes in English
Why join us
There are many reasons to join us, but here are a few:
- We strongly believe we are changing how games studios operate and at the core of what we do is making great games that create a connected community
- We're not just about making Games Where You Belong. We're also about building communities where our people belong. That's why Fortis is a thriving environment that celebrates diversity, embraces inclusivity, and fosters growth.
- Build and grow with a seasoned team of accomplished talent who have left an impactful mark in their disciplines, both in and out of gaming
Fortis is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, protected veteran status, or any other basis protected by applicable law, and will not be discriminated against on the basis of disability.
Create Your Profile — Game companies can contact you with their relevant job openings.