MY.GAMES is a leading European developer and publisher, driven by a singular goal: making great games that capture the hearts of players worldwide. Our community unites 1+ billion registered players.
We’ve developed or produced games, including War Robots, Hustle Castle, Rush Royale, Left to Survive, Tacticool, Grand Hotel Mania, War Robots: Frontiers – and many more.
Our internationally distributed team consists of top-tier gamedev professionals. We work remotely, and our hubs are located in the Netherlands, Cyprus, Armenia, UAE and Serbia.
Come join a universe of professional opportunities: develop and support large scale projects from PC/console/mobile, and create products across various genres – from casuals to shooters.
What you'll do:
- Shape and evolve our risk-based security strategy and roadmap; own the risk register and drive risk-based prioritization
- Develop and maintain security policies, standards, and procedures
- Own and grow vulnerability management — detection, prioritization, remediation tracking, and regular scanning of infrastructure and applications
- Build out security monitoring, detection, and event logging
- Lead incident response: investigation, containment, post-mortems, and corrective actions
- Secure our on-prem infrastructure (and cloud resources in hybrid setups) through hardening, network security, and endpoint protection
- Manage access and account governance, including control over privileged access
- Embed secure development practices into the SDLC and CI/CD; run threat modeling and advise teams on secure architecture for new services and features
- Protect source code and intellectual property from leaks
- Drive product security — player account protection, anti-fraud, and DDoS resilience
- Ensure compliance with privacy requirements (GDPR and others) and operate within recognized frameworks (ISO 27001 / NIST CSF / CIS)
- Assess risk from vendors, SaaS providers, and external teams
- Run internal security trainings and phishing simulations, and help grow a strong security culture across engineering
- Lead security's side of AI adoption — setting policy for AI tool usage and managing the risks that come with it
- Manage security tooling, budget, and vendor relationships; coordinate external pentests and our bug bounty / VDP (Vulnerability Disclosure Program)
- Report on security posture and metrics to leadership
What you need to succeed:
- 5+ years of hands-on infosec experience — this isn't a purely strategic role; you're comfortable configuring and running security tools, digging into incidents, and analyzing infrastructure and code
- Strong command of Linux, networking, and infrastructure — enough to independently track down and fix problems
- Scripting and automation skills (Python, Bash, or similar) — you automate the routine instead of doing it by hand
- A solid grasp of attack patterns, and the ability to read what's happening from logs, traffic, and configs
- Practical experience in vulnerability management, incident response, and monitoring
- Experience with SIEM, vulnerability scanners, and endpoint protection at the category level (we'll talk specific stack in the interview)
- Working knowledge of recognized security frameworks and privacy requirements — as practical tools, not checkbox exercises
- Ability to work autonomously, prioritize ruthlessly, and close out risks without a team standing behind you
What we offer:
- Work remotely from all around the world
- Collaborative working atmosphere in an internal game dev community that unites more than a dozen of internal game studios, crafting innovative experiences across mobile, PC, and console platforms
- A strong team of specialists across different areas — access unique expertise and professional knowledge
- Possibility to experiment and work on interesting tasks with ambitious goals — we have all resources to implement new ideas
- Create great games and win the hearts of players
- Push the boundaries of the game industry and lead the way forward