The InfoSec department is responsible for the Confidentiality, Integrity and Availability of the company's information, systems and processes It's in charge of establishing controls, building trust and relationships with other departments in the company and making sure that acceptable risk levels are met. The infosec department is working in a huge scale, cloud based environment and supporting the company in delivering the best game experience for over 400 millions gamers world wide.
Define, implement and maintain Plarium's cutting edge cloud Cyber security strategy and supporting technologies
Guide Developers, DevOps and IT teams on cloud secure architecture and best practices for protecting Plarium’s cloud assets.
Participate in the secure architecture process of migrating on prem technologies to the cloud and building new services in the cloud.
In charge of creating Threat Modeling for new games and applications deployed in the cloud : Identify security requirements, Pinpoint security threats and vulnerabilities, assess risks criticality and lead mitigation plan and initiatives to minimize risk to acceptable level.
Develop, implement and monitor secure cloud configurations and hardening standards.
Conduct continuous gap analysis on Plarium’s procedures and current cloud assets security status.
Build and own security tools and processes for Plarium’s cloud assets and processes
Have a Bachelor's degree in computer science or a related technical field
Broad and deep knowledge in cloud environments (GCP/AWS, Cloud security tools) and supporting services
At least 5 years working hands-on with cloud services (GCP/AWS) and architecture of cloud security, demonstrating proficiency in automating tasks and interfacing with APIs using scripting languages and cloud shell
Broad and deep knowledge of GCP security best practices
Deep knowledge of DevOps processes and tools
Deep knowledge working with Containers, Dockers and GKE
Extended knowledge in OS: Linux, Windows
Broad knowledge in network and infrastructure domain
Independency and prioritization capabilities
Great understanding of the business needs, the Infosec risks and how to close the gap between them
Experience with application security, leading SSDLC process
Application PT and code review experience
Experience with secure coding technique
Cyber security certifications: CISSP, CCSK, etc
What we offer our Employees
Your wellbeing: Flexible, hybrid work experience with talented professionals. Also, high work life balance derived from our people - oriented approach
Your health: top notch health insurance to employees and immediate family. Furthermore, gym membership or a variety or workout options.
Your future: personal and professional tools to assist with your development and journey.
Your contribution: A variety of social and charitable initiatives, that we take pride in.
And if that wasn't enough a fully and over the top stocked kitchen that will make any supermarket envious……