Sr. Security Engineer

DMarket, recently acquired by Mythical Games, makes the secure purchase and trade of virtual items possible through our blockchain-enabled marketplace.

Mythical Games is a Venture-backed game technology company powering the next generation of players, games, and studios.  Our goal is to launch exceptional video games that leverage distributed ledger tech while also providing a platform that will allow other game developers to do the same.

At Mythical Games, we are proud of our ‘People First’ culture. We believe that it takes great people and culture to make great products.  By treating each other with empathy and respect, we can live fulfilling lives outside of our jobs while also creating exceptional work.

We are seeking an experienced Sr. Security Engineer to help Mythical define the future of blockchain-enabled games.

This role at Mythical Games presents an opportunity for a Security Engineer to take their career to the next level by joining the most exciting company at the intersection of Gaming, E-commerce, and Blockchain.

• Perform security assessments of web and mobile applications, including manual and automated penetration testing;
• Identify, document, and track security vulnerabilities, and work with development teams to ensure timely remediation;
• Collaborate with developers and DevOps teams to integrate security into the software development lifecycle (SDLC);
• Design and implement secure coding guidelines and perform code reviews to ensure application-level security;
• Develop and maintain application security tools, frameworks, and processes;
• Conduct threat modeling and risk assessments for new features and systems;
• Stay informed on the latest application security threats, tools, and trends;
• Prepare detailed assessment reports and present findings to technical and non-technical stakeholders.

• 3+ years of commercial experience in Application Security, Penetration Testing, or a similar role;
• Solid understanding of OWASP Top 10, secure coding practices, and common web/mobile application vulnerabilities;
• Hands-on experience with penetration testing tools (e.g., Burp Suite, OWASP ZAP, Metasploit, etc.);
• Familiarity with code review and static/dynamic analysis tools (e.g., Snyk, SonarQube, Fortify, GHAS);
• Understanding of authentication, authorization, and session management mechanisms;
• Experience working in CI/CD environments and integrating security tools into pipelines;
• Strong analytical and problem-solving skills with attention to detail;
• Excellent communication and report writing skills;
• Bachelor’s degree in Computer Science, Cybersecurity, or a related field.

• Certifications such as OSCP, GWAPT, or CEH;
• Experience with bug bounty programs or responsible disclosure;
• Familiarity with container security and Kubernetes;
• Knowledge of cloud-native security in environments like GCP, AWS, or Azure.
• Knowledge of blockchain technologies

Location: Ukraine, remote.

Hiring process:

✅Intro call with a Recruiter → ✅Technical Interview → ✅Final Interview → ✅Reference Check → ✅Offer

We offer:

• Team of like-minded professionals who understand your game passion;
• Competitive financial reward;
• Health care starting on your first working day;
• 22 paid vacation days, paid sick leaves, and other personal days in accordance with the company's internal policies;
• Flexible working hours;
• Referral bonuses;
• Financial support and PTO in case of special occasions are governed by the internal policies of the company.

Our team values diversity and believes that it strengthens our games, products, and communities.  We strongly encourage POC, folks with disabilities, those belonging to the LGBTQIA+ communities, and people across all gender to apply. 

If you need assistance with accommodations due to a disability, please reach out to accessibility@mythical.games.

We’ll be with you as soon as possible; our goal is to ensure an accessible and equitable interview process.