Cloud Security Architect

About the department:

The infosec department is responsible for the Confidentiality, Integrity and Availability of the company's information, systems and  processes. It's in charge of establishing controls, building trust and relationships with other departments in the company and making sure that acceptable risk levels are met. The infosec department is working in a huge scale, cloud based environment and supporting the company in delivering the best game experience for over 400 millions gamers world wide.     

• Define, implement and maintain Plarium's cutting edge cloud Cyber security strategy and supporting technologies

• Guide Developers, DevOps and IT teams on cloud secure architecture and best practices for protecting Plarium’s cloud assets.

• Participate in the secure architecture process of migrating on prem technologies to the cloud and building new services in the cloud.

• In charge of creating Threat Modeling for new games and applications deployed in the cloud : Identify security requirements, Pinpoint security threats and vulnerabilities, assess risks criticality and lead mitigation plan and initiatives to minimize risk to acceptable level.

• Develop, implement and monitor secure cloud configurations and hardening standards.

• Conduct continuous gap analysis on Plarium’s procedures and current cloud assets security status.

• Build and own security tools and processes for Plarium’s cloud assets and processes

• • Have a Bachelor's degree in computer science or a related technical field

  • Broad and deep knowledge in cloud environments (GCP/AWS, Cloud security tools) and supporting services

  •  At least 5 years working hands-on with cloud services (GCP/AWS) and architecture of cloud security, demonstrating proficiency in automating tasks and interfacing with APIs using scripting languages and cloud shell

  • Broad and deep knowledge of GCP security best practices

  • Deep knowledge of DevOps processes and tools

  • Deep knowledge working with Containers, Dockers and GKE

  • Extended knowledge in OS: Linux, Windows

  • Broad knowledge in network and infrastructure domain

  • Independency and prioritization capabilities

  • Great understanding of the business needs, the Infosec risks and how to close the gap between them

• Experience with application security, leading SSDLC process

• Application PT and code review experience

• Experience with secure coding technique

• Cyber security certifications: CISSP, CCSK, etc

Your wellbeing: Flexible, hybrid work experience with talented professionals. Also, high work life balance derived from our people - oriented approach

Your health: top notch health insurance to employees and immediate family. Furthermore, gym membership or a variety or workout options.

Your future: personal and professional tools to assist with your development and journey.

Your contribution: A variety of social and charitable initiatives, that we take pride in.

And if that wasn't enough a fully and over the top stocked kitchen that will make any supermarket envious……