2K
As a leading mobile games developer, Jam City is looking to "level up" our talent. We're searching for innovators who consider themselves dynamic, collaborative, and thrive in a fast-paced environment. PERKS & BENEFITS Unlimited Vacation, Paid Sick Days & Holidays 100% Employee Covered Medical, Dental, Vision Plan Base Plan Life Insurance, 401k, Flexible Spending Accounts, Commuter Benefits & More Catered Lunches & Well-stocked Kitchens Yoga & Wellness Activities Happy Hours Company Events Dog Friendly ABOUT THE ROLE Jam City IT is seeking an IT Security Engineer to support and strengthen our security posture through proactive improvements and responsive actions. This hands-on role involves monitoring security systems, analyzing events and logs, investigating incidents, and implementing security tools and automations, including our future SIEM. You will lead operational security tasks such as vulnerability remediation, user access reviews, and code scan follow-ups. The Security Generalist combines deep technical expertise with operational responsibility across Jam City's security controls, serving as both builder and executor of security solutions. Reporting to the VP of IT (Data Protection Officer), you'll work cross-functionally to protect company assets, infrastructure, and applications from cyber threats while supporting compliance and security best practices. RESPONSIBILITIES Lead incident investigations across SaaS platforms (Okta, Google Workspace, Slack, Box) and Cloud platforms (GCP, AWS). Design and implement automated security workflows in Okta. Deploy SIEM tooling and develop detection rules/playbooks. Maintain User Access Reviews, vulnerability scans, remediations, and threat response. Conduct red teaming exercises and penetration tests. Configure and optimize endpoint, browser, and SaaS security controls. Collaborate with DevOps to securely manage secrets and API keys. Monitor alerts from EDR, DLP, and code scanning systems. Participate in security awareness and phishing simulations. Assist with compliance audits and security documentation. QUALIFICATIONS Deep understanding of authentication protocols (SAML, OIDC, OAuth, Kerberos). Experience with SIEM platforms and detection engineering. Strong automation skills with scripting (Python/Bash) and APIs. Familiarity with endpoint protection, DLP tools, and browser security. Ability to lead red team assessments and penetration testing. Knowledge of CI/CD pipelines and secure development practices. Excellent documentation and collaboration skills. TOOLS / ENVIRONMENTS Okta, Google Workspace Admin, GitHub Security, CrowdStrike, Nessus/Tenable, AWS/GCP IAM, Security Tools (Guard Duty, Security Hub, CloudTrail, CloudWatch), GCP SCC Scripting languages (Python, Bash), Terraform (optional), Okta Workflows/Workforce Identity Cloud. Jira, Confluence, Google Drive. CHECK OUT LIFE AS A JAM CITIZEN: - Company news and events on our LinkedIn - Company Blog - Employee Feedback on our Comparably page - Videos on our teams and games on YouTube OUR COMMITMENT TO EQUITY, DIVERSITY, & INCLUSION We believe in creating games that unite people across the world and in providing an inclusive and diverse environment for our employees. We celebrate diversity through Employee Resource Groups, cultural events, trainings, and speaker series. Jam City is an equal opportunity employer. We make employment decisions without regard to race, age, sex, religion, ethnicity, disability, veteran status, sexual orientation, gender identity, or any other protected class. ABOUT JAM CITY Jam City is an award-winning mobile entertainment studio behind popular games like Cookie Jam and Panda Pop. Led by CEO Josh Yguado, our studios are located worldwide, including Los Angeles, Berlin, Buenos Aires, and more. #J-18808-Ljbffr