Associate Principal Security Engineer

Job Description

Join the Epicenter of Gaming Innovation

At Activision-Blizzard, we're not just in the business of gaming. We're in the business of crafting epic entertainment experiences. Our portfolio includes some of the biggest franchises in all of entertainment, developed by the exceptionally dedicated teams at Activision Publishing, Blizzard Entertainment, King Digital Entertainment, Activision Blizzard Studios, and independent studios, including Infinity Ward, Sledgehammer Games, and Treyarch.

Your Quest

Are you a passionate gamer with a knack for security and development? If so, we have a great opportunity for you! We're on the hunt for an Associate Principal Application Security Engineer to join our outstanding Activision Blizzard King (ABK) Product Security team.

In this role, you'll be the guardian of our application ecosystems, working with our creative developers to ensure the highest levels of availability, performance, and security across our enterprise. Reporting to the Senior Director of ABK's Application and Product Security Trust Center, you'll collaborate with technology groups across all lines of business and be part of a hard-working team of security engineers who demonstrate superb technical competency.

Responsibilities
• Contribute to application ecosystem design
• Secure the environment through engineering and configuring application-related tools
• Automate tasks by developing technical solutions and new security tools/scripts
• Evaluate findings from Static Application Security Testing (SAST)
• Write detailed reports on assessment findings and suggestions for improving application security
• Integrate security testing tools into the Software Development Life Cycle (SDLC) for improved assurance
• Advise and develop application security architecture and cyber security designs
• Identify application security requirements
• Influence the secure design of new products and services
• Document standard operating procedures and protocols

Minimum Requirements
• Experience as an application or information security engineer
• Understanding of programming languages like C, C++, C#, Python, JavaScript
• Ability to identify weaknesses at the code level
• Knowledge of securing code repositories
• Familiarity with build technologies, code repositories, and CI/CD pipeline processes
• Act as a technical Subject Matter Expert (SME) on projects
• Mentor team members on technical challenges
• Understanding of security testing techniques
• Ability to tackle problems independently and collaborate with the team
• Experience in identifying vulnerabilities in code and systems
• Knowledge of foundational security elements and application security best practices
• Experience leading technical projects
• Knowledge of DevOps and containerization software like Docker, Kubernetes
• Knowledge of fuzzing, Dynamic Application Security Testing (DAST), Static Application Security Testing (SAST), Software Composition Analysis (SCA) and/or Interactive Application Security Testing (IAST)

Extra Points
• Research new techniques for unauthorized access to ABK IP
• Public recognition for identifying Common Vulnerabilities and Exposures/Common Weakness Enumeration (CVE/CWE)
• Experience speaking publicly at security conferences
• Knowledge of Cloud Services like Google Cloud, AWS, Azure
• Knowledge of shell scripting, Perl, PowerShell
• Consultancy experience
• Writing customer facing security reports

Subject to eligibility requirements, the Company offers comprehensive benefits including:
• Medical, dental, vision, health savings account or health reimbursement account, healthcare spending accounts, dependent care spending accounts, life and AD&D insurance, disability insurance;
• 401(k) with Company match, tuition reimbursement, charitable donation matching;
• Paid holidays and vacation, paid sick time, floating holidays, compassion and bereavement leaves, parental leave;
• Mental health & wellbeing programs, fitness programs, free and discounted games, and a variety of other voluntary benefit programs like supplemental life & disability, legal service, ID protection, rental insurance, and others;
• If the Company requires that you move geographic locations for the job, then you may also be eligible for relocation assistance.

Eligibility to participate in these benefits may vary for part time and temporary full-time employees and interns with the Company. You can learn more by visiting https://www.benefitsforeveryworld.com/.

In the US, the standard base pay range for this role is $155,500.00 - $287,876.00 Annual. These values reflect the expected base pay range of new hires across all US locations. Ultimately, your specific range and offer will be based on several factors, including relevant experience, performance, and work location. Your Talent Professional can share this role's range details for your local geography during the hiring process. In addition to a competitive base pay, employees in this role may be eligible for incentive compensation. Incentive compensation is not guaranteed.

Jobcode: Reference SBJ-g477q7-18-118-166-98-42 in your application.