Corporate IT Security Engineer

As a leading mobile games developer, Jam City is looking to “level up” our talent.  We’re searching for innovators who consider themselves dynamic, collaborative, and thrive in a fast-paced environment. 
PERKS & BENEFITS Competitive salariesBenefitsProfessional Development OpportunitiesFlexibility

Jam City IT focuses on providing world class end-user support and empowering employees with best-in-class technical resources. Our technology team is growing at Jam City and we are looking to add an IT Security Engineer to the organization. This hands-on role will support and strengthen our security posture through both proactive improvements and responsive actions. As a Security Generalist, you will monitor security systems, analyze events and logs, investigate and take necessary actions to resolve incidents. Furthermore you will implement and maintain security tools, automations, and infrastructure—including our future SIEM. You will lead operational security tasks such as vulnerability remediation, user access reviews, and code scan follow-ups. 
As a SME combines deep technical engineering expertise with day-to-day operational responsibility across Jam City's security controls, you will serve as both the builder and executor of security solutions.
Reporting to the VP of IT (Data Protection Officer), you’ll work cross-functionally to protect company assets, infrastructure, and applications from cyber threats while supporting compliance and security best practices across the organization.

RESPONSIBILITIES

• Lead incident investigations across SaaS platforms including Okta, Google Workspace, Slack, Box as well as Cloud Computing & Infrastructure platforms such as GCP and AWS.
• Design and implement automated security workflows in Okta (e.g., contextual access, dynamic MFA, threat response automation).
• Design, implement and deploy SIEM tooling and develop detection rules/playbooks.
• Maintain and execute User Access Reviews (UARs), vulnerability scans & remediations, and threat response.
• Perform red teaming exercises and annual penetration testing campaigns.
• Configure, test, and optimize endpoint, browser, and SaaS security controls.
• Collaborate with DevOps and Engineering to ensure secrets and API keys are securely managed.
• Monitor and triage alerts from EDR, DLP, and code scanning systems.
• Participate in security awareness programs and phishing simulations.
• Assist with compliance audits and security documentation including Business Continuity, DR/backup policies.

QUALIFICATIONS

• Deep understanding of authentication protocols (SAML, OIDC, OAuth, Kerberos).
• Experience with SIEM platforms and detection engineering (rule creation, log correlation).
• Strong automation experience with Okta Workflows, scripting (Python/Bash), and APIs.
• Familiarity with endpoint protection, browser session security, and DLP tools.
• Ability to perform and lead internal red team assessments and penetration testing.
• Deep understanding of CI/CD pipelines and secure development knowledge (secrets management, hardcoded credential detection etc..).
• Strong documentation and cross-team collaboration skills.

TOOLS / ENVIRONMENTS

• Okta, Google Workspace Admin, GitHub Security, CrowdStrike, Nessus/Tenable, AWS/GCP IAM, AWS Security Tools (Guard Duty, Security Hub, CloudTrail, CloudWatch), GCP SCC
• Scripting languages (Python, Bash), Terraform (optional), Okta Workflows/Workforce Identity Cloud.
• Jira, Confluence, Google Drive for documentation.

CHECK OUT LIFE AS A JAM CITIZEN:- Company news and events on our LinkedIn- Company Blog- Employee Feedback on our Comparably page- Find videos on our teams and games on our Youtube
OUR COMMITMENT TO EQUITY, DIVERSITY, & INCLUSIONWe believe in creating games that unite people across the world and that showcase our commitment to providing an environment that is both inclusive and diverse for our players and employees. We strive to create a workforce that is reflective of our global player community as we know that we are stronger and better when we play together. To help promote an inclusive culture, we celebrate the visible and invisible diversity of our Jam Citizens through initiatives including Employee Resource Groups, cultural events, trainings, speaker series, and more. 
Jam City is an equal opportunity employer. We enthusiastically accept our responsibility to make employment decisions without regard to race, age, sex (including pregnancy), national origin, ancestry, religion, ethnicity, marital, or domestic partnerships status, disability, genetic information (including the refusal to submit to genetic testing), predisposing genetic characteristics, military status, veteran status, domestic violence victim status, sexual orientation, gender identity or expressions, or any other classification protected by federal, state, and local laws. Our management is committed to following this policy with respect to hiring, placement, promotion, transfer, demotion, layoff, termination, recruiting, pay, and other forms of compensation, training, and general treatment during employment.
ABOUT JAM CITYJam City is an award-winning mobile entertainment studio providing unique and deeply engaging games that appeal to a broad, global audience.
Led by CEO Chris DeWolfe, former MySpace co-founder and CEO, and COO Josh Yguado, former 20th Century Fox executive, Jam City is the creative powerhouse behind some of the highest-grossing and most enduring mobile games. Jam City’s global franchise Cookie Jam has generated more than half a billion dollars, and Panda Pop has more than 120 million downloads to date.
The company also is the go-to studio for Hollywood, having developed immersive, narrative-rich mobile games around iconic entertainment brands. The company’s popular RPG game Harry Potter: Hogwarts Mystery was the #1 game in more than 40 countries at its launch in April 2018.
Jam City has nine studios located in Los Angeles (HQ), Berlin, Buenos Aires, Bogotá, Burbank, Cedar Falls, San Diego, San Francisco, and Toronto.