Senior Security Engineer
Confirmed live in the last 24 hours
Roku
Job Description
Teamwork makes the stream work.
Roku is changing how the world watches TV
Roku is the #1 TV streaming platform in the U.S., Canada, and Mexico, and we've set our sights on powering every television in the world. Roku pioneered streaming to the TV. Our mission is to be the TV streaming platform that connects the entire TV ecosystem. We connect consumers to the content they love, enable content publishers to build and monetize large audiences, and provide advertisers unique capabilities to engage consumers.
From your first day at Roku, you'll make a valuable - and valued - contribution. We're a fast-growing public company where no one is a bystander. We offer you the opportunity to delight millions of TV streamers around the world while gaining meaningful experience across a variety of disciplines.
About The Team
The Roku trust engineering team is a close knit group of professionals with a passion for information security. Our mission is to protect our customers, partners, devices, services, infrastructure, and data. We work collaboratively, sharing insights and expertise to stay ahead of the curve. Join us, and you’ll be part of a dynamic team that thrives on challenges and celebrates victories together.
About The Role
As a Senior Security Engineer on the Trust Cloud team, your role involves evaluating, architecting, designing, and implementing end-to-end security controls to impact the global user base. A key focus is on developing automated, scalable security solutions to enhance efficiency and protect Roku. This position requires a broad breadth of security expertise across all disciplines of security, including networking, DevSecOps, security tooling implementation, policy and procedure, risk evaluation, etc.
What You Will Be Doing
- Conducting enterprise, network, and application level security reviews.
- Conducting threat modelling for infrastructure, platform, and application initiatives.
- Planning and overseeing execution of security initiatives and projects
- Partnering with infrastructure, platform, and application teams to embed security into application architectures and deployment workflows as part of a robust Secure Software Development Lifecycle (SSDLC).
- Improving IAM policies, network configurations, DNS security, and cloud resource management practices.
- Designing and implementing integrations with third-party security platforms to automate vul
