In this role, you will take full ownership of securing a modern, high‑traffic digital platform across its entire technology stack – from cloud infrastructure to application layers. You will operate in a fast‑paced, high‑growth environment where security is a core pillar of product reliability and user trust. Working closely with engineering, DevOps, and product teams, you will proactively identify risks, design robust defenses, and respond to emerging threats. This is a hands‑on, high‑impact role that combines strategic oversight with deep technical execution. You will also contribute to building a strong security culture while shaping scalable practices in a dynamic and evolving ecosystem.
Accountabilities
Own and continuously improve the end‑to‑end security posture across infrastructure, APIs, and applications
Identify, assess, and remediate vulnerabilities across frontend, backend, and cloud environments
Design and enforce security controls, including WAF configurations, bot mitigation, and rate‑limiting strategies
Harden cloud infrastructure by implementing best practices in access control, network security, and system configuration
Lead threat‑modeling sessions for new features to proactively identify and mitigate risks
Monitor, investigate, and respond to security incidents, ensuring timely resolution and root‑cause analysis
Conduct penetration testing and vulnerability assessments, prioritizing remediation based on business impact
Define and enforce HTTP security policies and standards across systems
Develop and maintain incident response playbooks, including DDoS mitigation strategies
Collaborate with engineering teams to embed secure coding practices and review sensitive code changes
Manage vulnerability disclosure processes and external security reports
#J-18808-Ljbffr