Principal Application Security Engineer

Zynga is a global leader in interactive entertainment with a mission to connect the world through games and a wholly-owned subsidiary of Take-Two Interactive Software, Inc. (NASDAQ: TTWO). With massive global reach in more than 175 countries and regions, the combined diverse portfolio of popular game franchises has been downloaded more than 6 billion times on mobile, including Star Wars™: Hunters, CSR Racing™, Dragon City, Empires & Puzzles™, FarmVille™, Golf Rival™, Hair Challenge™, Harry Potter: Puzzles & Spells™, High Heels!™, Merge Dragons!™, Merge Magic!™, Monster Legends, Toon Blast™, Top Eleven, Toy Blast™, Two Dots, Words With Friends™, and Zynga Poker™.Founded in 2007, Zynga is headquartered in California with locations in North America, Europe, and Asia. For more information, visit www.zynga.com or follow Zynga on Twitter, Instagram, Facebook, or the Zynga blog

Position Overview

In partnership with cybersecurity leadership, the Principal Application Security Engineer will work with product teams, game studios, central technology teams, and cybersecurity to perform proactive and offensive security engineering assessments, identifying vulnerabilities in games, systems, applications, and network infrastructure. This role will serve in a lead capacity for application security initiatives, improving overall cybersecurity across our gaming products and services

Responsibilities

• Collaborate with cybersecurity leadership to engage Game Studios and Central Technology Teams in proactive security assessments, focusing on secure application security engineering and effective solutions.
• Lead application security initiatives to bolster product security efforts within our gaming products and services!
• Serve as an application security domain expert in security testing, offering mentorship to penetration testers in identifying and addressing vulnerabilities.
• Drive security engineering thought leadership within the product teams, encouraging a proactive approach to application security.
• Assess the efficiency of application security measures and provide recommendations for ongoing improvement.
• Evaluate the effectiveness of application security measures and provide recommendations for continuous improvement.
• Engaging in complex engineering discussions and demonstrating deep security expertise to ensure detailed application security assessments and threat analyses are conducted.
• Coordinate application security efforts to ensure compliance with third-party requirements while engaging with external researchers to address vulnerabilities in our products.

Desired Skills and Experience

• Bachelor's degree in a related field or equivalent work experience; advanced degree in science, engineering, or technology is preferred.
• Strong background in application security engineering, penetration testing, and vulnerability management.
• Proven experience in application development, security assessments, and penetration testing.
• Excellent leadership skills and strong interpersonal abilities.
• Gaming security experience is a plus!
• Ability to work independently and within a distributed team.
• Strong written and verbal communication skills, with great attention to detail.
• Ability to collaborate with teammates and customers to tackle ambiguous challenges.

What We Offer You

• Competitive salary, bonus plan and ESPP (Employee Stock Purchase Plan)
• 401K Company Match Contribution (US)
• RRSP/DPSP company match contribution (Canada)
• Health coverage, dental, disability, critical illness, EAP, and life insurance (Canada)
• Medical, dental, vision, EAP, life insurance, and disability benefits (US)
• Virtual mental health and neurodiversity support programs
• Global Fitness reimbursement program
• Global Wellbeing Program
• Financial wellness program with unlimited access to certified financial planners
• Discretionary Time Off policy for many employees
• Family planning support program
• Generous paid parental, pregnancy-related disability, caregiver, and compassionate leaves
• Zynga happy hours and frequent employee events
• Flexible working hours on many teams
• Culture of diversity and inclusion including employee resource groups
• Work with cool people and impact millions of daily players

We will consider all qualified job-seekers with criminal histories in a manner consistent with applicable law.

This is a fully remote role that may be based anywhere in the United States. Below are the expected salary and wage ranges for applicants based in locations where the pay transparency law is in effect:

Colorado: $96,100 and $142,240 per year

California: $109,800 and $162,480 per year

New York State (inclusive of New York City): $123,500 and $182,780 per year

Washington: $96,100 and $142,240 per year

Base pay offered is based on market location, and may vary further depending on individualized factors for job candidates, such as job-related knowledge, skills, experience, and other objective business considerations. Subject to those same considerations, the total compensation package for this position may also include other elements, including a bonus and/or equity awards and eligibility to participate in our 401(K) plan, in addition to a full range of medical, dental, vision, and basic life insurance. Employees will also receive 16 paid holidays per calendar year, unlimited discretionary time off, and will receive up to 6.5 sick days per calendar year. Details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, employee will be in an "at-will position" and the company reserves the right to modify base salary (as well as any other discretionary payment or compensation or benefit program) at any time, including for reasons related to individual performance, company or individual department/team performance, and market factors.

#LI-RK2

We are proud to be an equal opportunity employer, which means we are committed to creating and celebrating diverse thoughts, cultures, and backgrounds throughout our organization.  Employment with us is based on substantive ability, objective qualifications, and work ethic – not an individual’s race, creed, color, religion, sex or gender, gender identity or expression, sexual orientation, national origin or ancestry, alienage or citizenship status, physical or mental disability, pregnancy, age, genetic information, veteran status, marital status, status as a victim of domestic violence or sex offenses, reproductive health decision, or any other characteristics protected by applicable law.

As an equal opportunity employer, we are committed to providing the necessary support and accommodation to qualified individuals with disabilities, health conditions, or impairments (subject to any local qualifying requirements) to ensure their full participation in the job application or interview process. Please contact us at accommodationrequest@zynga.com to request any accommodations or for support related to your application for an open position.

Please be aware that Zynga does not conduct job interviews or make job offers over third-party messaging apps such as Telegram, WhatsApp, or others.  Zynga also does not engage in any financial exchanges during the recruitment or onboarding process, and will never ask a candidate for their personal or financial information over an app or other unofficial chat channel.  Any attempt to do so may be the result of a scamp or phishing attack, and you should not engage.  Zynga’s  in-house recruitment team will only contact individuals through their official Company email addresses (i.e., via a zynga.com, naturalmotion.com, smallgiantgames.com, themavens.com, gram.gs email domain).