img
Contract TypeFull-time
Workplace typeRemote
LocationSaudi Arabia

Job Description

About the Role

Jobgether is listing this full-time Platform Security Engineer position on behalf of a partner company, who will manage all applications and subsequent recruitment steps. This role is based in Saudi Arabia and is central to protecting large-scale digital products used by a global audience. The ideal candidate will possess 5-10 years of experience, with a minimum of 3 years specifically focused on product security.

Role Summary

As a Platform Security Engineer, you will collaborate across engineering, infrastructure, and security teams to enhance platform defenses and safeguard customer data. This position involves proactively addressing emerging threats, leading critical security initiatives, and influencing secure development practices. You will contribute to improving incident response capabilities and building resilient systems, fostering a collaborative, security-first engineering culture within a dynamic and fast-paced environment.

Key Responsibilities

  • Strengthen and maintain perimeter and network security controls, including web application firewalls (WAF), rate limiting, anti-bot protections, and DDoS mitigation strategies.
  • Secure APIs against abuse, malicious traffic, and common vulnerabilities while improving authentication, authorization, and access control mechanisms.
  • Lead the vulnerability management lifecycle by identifying, prioritizing, tracking, and validating remediation of security issues.
  • Coordinate external penetration testing engagements and ensure timely resolution of identified findings.
  • Drive incident response activities for product security events and collaborate with monitoring teams to improve detection and response capabilities.
  • Partner with cross-functional teams on fraud prevention, trust and safety initiatives, and customer data protection through encryption, masking, and secure access controls.
  • Promote secure development practices by managing Security Champions and Bug Bounty programs while increasing security awareness across engineering teams.

Required Qualifications and Experience

  • At least 5 years of experience in information security, including a minimum of 3 years focused on product security.
  • Hands-on expertise managing Web Application Firewalls such as Wallarm, Akamai, or Cloudflare.
  • Strong understanding of API security principles, including the OWASP API Security Top 10 and API gateway technologies.
  • Experience implementing anti-bot solutions using behavioral analysis and fingerprinting techniques.
  • Practical knowledge of DDoS protection across Layers 3-7 and modern network defense strategies.
  • Experience managing vulnerability management programs, including CVSS scoring, remediation prioritization, and service level tracking.
  • Familiarity with coordinating penetration testing engagements and interpreting security assessment reports.
  • Solid understanding of OAuth, OpenID Connect (OIDC), JWT, session management, and modern authentication frameworks.
  • Working knowledge of SQL and Elasticsearch for security investigations, log analysis, monitoring, and reporting.
  • Strong analytical, communication, collaboration, and problem-solving skills with the ability to work effectively across distributed engineering teams.

Compensation

This position offers competitive compensation. Salary details will be shared directly with candidates during the recruitment process by the partner company.


Requirements

  • Requires 5-10 Years experience

Similar Jobs