Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Identify security flaws in software designs and guide development teams on best practices.
- Company: Join Rockstar Games, a leader in world-class entertainment experiences.
- Benefits: Competitive salary, inclusive culture, and opportunities for professional growth.
- Why this job: Make a real impact on security in the gaming industry while collaborating with top talent.
- Qualifications: 5+ years in security roles, proficiency in C++/C#/.NET and JavaScript.
- Other info: Dynamic studio environment in Edinburgh with excellent career advancement opportunities.
The predicted salary is between 36000 - 60000 £ per year.
At Rockstar Games, we create world-class entertainment experiences. Become part of a team working on some of the most rewarding, large-scale creative projects to be found in any entertainment medium - all within an inclusive, highly-motivated environment where you can learn and collaborate with some of the most talented people in the industry. Rockstar is on the lookout for talented Senior Application Security Engineer who possess a passion for diving into complex software designs to identify security flaws and vulnerabilities. This is a full-time, permanent and in-office position based in Rockstar’s state-of-the-art game development studio in Edinburgh, Scotland.
WHAT WE DO
The Rockstar Games Application Security team partners with numerous development teams across the company to incorporate security practices throughout the software development lifecycle. We strive to understand the threat landscape affecting our development studios, the gaming industry, and the world at large to define secure development standards and guidelines to safeguard our business and protect our players. We independently assess our application code and builds through various techniques (static analysis, dynamic analysis, software composition analysis, etc.) to identify potential vulnerabilities and design flaws and work with development teams to remediate.
RESPONSIBILITIES
- Track trends in the security community and keep abreast of emerging threats.
- Provide technical security guidance to developers, team leads and producers.
- Engage development teams to identify security requirements for new products and features while ensuring other requirements don’t introduce an unintended security impact.
- Develop threat models of new applications and features to systematically understand how they can be attacked in order to prioritize control development.
- Conduct automated and manual security assessments.
- Drive remediation efforts behind internally and publicly identified vulnerabilities.
- Support maintaining Rockstar Games’ public and private bug bounty programs.
REQUIREMENTS
- 5+ years of experience working in a professional, academic or freelance environment (e.g. bug bounty) identifying and remediating security bugs/flaws.
- Proficiency in C++/C#/.NET and JavaScript.
- Extensive knowledge of common software security vulnerabilities (e.g., OWASP Top 10), attack techniques and remediation tactics/strategies.
- Experience working in or establishing secure CI/CD pipelines and the concept of shifting security left in the SDLC.
- Working knowledge of the principles and techniques for both manual and automated application security assessments.
- Understanding of a variety of web technologies including: JSON, WebSockets, HTTP/2, DNS, RESTful APIs.
- Experience in results-oriented, retail driven environment with strict deadlines and ship dates.
- Strong written and verbal communication skills.
PLUSES
Please note that these are desirable skills and are not required to apply for the position.
- Experience with scripting and process automation.
- An understanding of effective practices for securing the SDLC that considers developer experience, sustainability and compliments release velocity.
- Experience with penetration testing and offensive security tools and techniques, e.g., Burp Suite, Metasploit, Wireshark.
- Industry certifications preferred (CISSP, GSEC, OSCP, CEH, etc.).
- BSc/MSc in a computer science or related field.
HOW TO APPLY
Please apply with a CV and cover letter demonstrating how you meet the skills above. If we would like to move forward with your application, a Rockstar recruiter will reach out to you to explain next steps and guide you through the process. Rockstar is committed to creating a work environment that promotes equal opportunity, dignity and respect. In line with this commitment, Rockstar will provide reasonable accommodations to qualified job applicants with disabilities during the recruitment process in order for such applicants to be considered for the position for which they are applying, as well as to qualified employees to enable them to perform the essential functions of their roles. If you need more information about Rockstar’s reasonable accommodation policies or process, or need to request an accommodation, please contact the Human Resources Department. If you’ve got the right skills for the job, we want to hear from you. We encourage applications from all suitable candidates regardless of age, disability, gender identity, sexual orientation, religion, belief, race, or any other protected category.
Senior Application Security Engineer employer: Rockstar
Contact Detail:
Rockstar Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Application Security Engineer
✨Tip Number 1
Network like a pro! Reach out to current or former employees at Rockstar Games on LinkedIn. A friendly chat can give us insider info about the company culture and maybe even a referral!
✨Tip Number 2
Show off your skills! Prepare a portfolio or case studies that highlight your experience with application security. We want to see how you tackle real-world problems, so make it engaging and relevant.
✨Tip Number 3
Get ready for the interview! Research common interview questions for Senior Application Security Engineers and practice your answers. We need to demonstrate our expertise and passion for security in every response.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who take the initiative to apply directly!
We think you need these skills to ace Senior Application Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Senior Application Security Engineer role. Highlight your experience with security vulnerabilities and software development, and don’t forget to mention any relevant tools or languages you’ve worked with!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about application security and how your skills align with Rockstar’s mission. Be genuine and let your personality come through.
Showcase Your Experience: When detailing your experience, focus on specific projects where you identified and remediated security flaws. Use metrics if possible to demonstrate your impact – numbers speak volumes!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy!
How to prepare for a job interview at Rockstar
✨Know Your Security Fundamentals
Make sure you brush up on the OWASP Top 10 and common vulnerabilities. Be ready to discuss how you've identified and remediated security flaws in your past roles. This shows that you not only understand the theory but can apply it practically.
✨Showcase Your Technical Skills
Prepare to demonstrate your proficiency in C++, C#, .NET, and JavaScript. You might be asked to solve a coding problem or explain your approach to secure coding practices, so have examples ready that highlight your experience with these languages.
✨Understand the Development Lifecycle
Familiarise yourself with secure CI/CD pipelines and the concept of shifting security left in the SDLC. Be prepared to discuss how you’ve integrated security into development processes in previous positions, as this is crucial for the role.
✨Engage with the Team
Rockstar values collaboration, so be ready to talk about how you've worked with development teams in the past. Share examples of how you provided technical guidance and engaged with team leads to ensure security requirements were met without compromising on other project goals.
