Be an early applicantLess than 25 applicants

Company

Original Job Post

Tencent · 2 days ago

DevOps Security Engineer

California, United States

Full-time

Onsite

Mid Level

$72K/yr - $224K/yr

3+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

AdvertisingInternet

H1B Sponsorship

Growth Opportunities

Insider Connection @Tencent

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Define, implement, and maintain secure pipelines, promoting a culture of rapid and safe iteration.

Design and refine scalable and reliable CI/CD processes with a security-first approach, always keeping the game's best interests at heart.

Develop and enhance a robust build pipeline, automating secure build/artifact delivery and deployment.

Use your expertise to identify and mitigate security risks, always prioritizing reasoning over ego.

Collaborate with the existing team to integrate and improve upon current infrastructure with security best practices.

Conduct threat modeling and risk assessments, ensuring that potential vulnerabilities are identified and addressed collaboratively.

Lead and participate in security training and awareness initiatives for the development team.

Develop and maintain an incident response plan, ensuring preparedness in the event of a security breach.

Collaborate with other developers to address security concerns at the root and craft lasting solutions, all while maintaining a passion for the project.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

DevSecOpsBashPythonC#C++Interpretive languageSecure CI/CDAutomationOrchestration toolsJenkinsSource control systemsPerforceGitSecure coding practicesGitHub EnterpriseOrganizational policiesBranch protectionCode scanningSecret scanningIACInfrastructure As CodeTerraformKubernetes security best practicesPod security policiesNetwork policiesSecrets managementGoogle Cloud PlatformGCP security featuresIAM rolesSecurity groups

Required

A security-focused engineer dedicated to enhancing the security posture throughout the development lifecycle and has a genuine passion for games.

3+ years of DevSecOps experience, preferably in the Games or Tech Industry.

Proficiency with Bash, Python, C#, C++ or at least one interpretive language.

Experience with secure CI/CD, automation, and orchestration tools such as Jenkins.

Familiarity with source control systems like Perforce and Git, with an emphasis on secure coding practices.

Experience with GitHub Enterprise, including setting up and managing organizational policies, advanced branch protection, and security features such as code scanning and secret scanning.

Experience with IAC (Infrastructure As Code) security best practices and tools like Terraform.

Deep understanding of Kubernetes security best practices, including pod security policies, network policies, and secrets management.

Experience with Google Cloud Platform (GCP) security features and best practices, including IAM roles, security groups, and VPC configurations.

Familiarity with GCP-native tools like Google Kubernetes Engine (GKE), Cloud Security Command Center, and Cloud Audit Logs.

Knowledge of GDPR and other data privacy regulations.

Experience in setting up and managing MFA and IAM.

Understanding of network security and DDoS mitigation strategies.

Preferred

Track record of shipping at least one AAA game on PC or console with a strong security posture.

Experience working with Unity or Unreal with a focus on security.

Proficiency in containerization and cloud-based services with security configurations.

Knowledge of configuration management tools like Ansible.

Experience with secure artifact repositories like Docker Registry.

Relevant security certifications like CISSP, CEH, etc.

A degree in engineering, science, or cybersecurity.

Familiarity with the Secure Game Development Lifecycle (SGDLC).

Experience with tools and methodologies for penetration testing and vulnerability scanning.

Strong communication skills and the ability to work collaboratively with both security and non-security personnel.

Experience with cloud-native security tools and platforms, such as Forseti, OPA/Gatekeeper, or Grafeas.

Knowledge of container runtime security and tools like gVisor or Falco.

Understanding of gRPC ecosystem tools and their security implications, such as gRPC-Web, gRPC-Gateway, or Envoy Proxy.

Benefits

Flexible remote work options

Highly creative and collaborative start-up culture

Support from one of the world’s leading gaming and internet companies

Competitive pay and benefits

Company

Tencent

Glassdoor

4.0

Tencent is an internet service portal offering value-added internet, mobile, telecom, and online advertising services.

Founded in 1998

Shenzhen, Guangdong, CHN

10,001+ employees

https://www.tencent.com/en-us

H1B Sponsorship

Tencent has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Trends of Total Sponsorships

2023 (34)

2022 (47)

2021 (56)

2020 (67)