DevSecOps

Join us at Playtika (NASDAQ: PLTK) where were driven by the belief life needs play. Were on a mission to deliver infinite ways to play using cutting-edge technologies like AI and machine learning to craft immersive experiences that connect inspire and entertain millions of players worldwide.

From our start as a small mobile games company founded in Israel to our current position as a publicly traded company and industry leader we continue to be a dominant force in interactive entertainment. With a diverse portfolio of award-winning category-leading Casual and Social Casino-themed games including nine of the top 100 highest-grossing mobile games in the US were setting the standard for excellence.

Our success story is co-authored by a dynamic team of storytellers strategists creators and data scientists who thrive on innovation. We are home of the best advancing an inclusive culture that embraces our core values and reflects our agile DNA.

With a strong financial foundation disciplined operations unwavering player-focused approach and relentless can-do spirit were well-positioned for sustained growth. If youre ready to join the driving force behind the evolution of interactive entertainment we invite you to come play with us.

Role Overview

As a DevSecOps Engineer in Playtikas Product Security group you own the security of our SDLC CI/CD pipelines and software supply chain. Your mission is to make the secure path the easiest path for studios and sharedtech teams by embedding security controls into developer workflows build systems and runtime platforms.

You will work closely with CI/CD & DevEx Infrastructure/ITSRE and OPS teams as well as with other groups within the information security department itself to design implement and operate scalable guardrails that keep our games and platforms secure without slowing delivery. You also act as a bridge between security and DevOps/IT teams helping them adopt secure practices and tooling.

Key Responsibilities

• Embed security into CI/CD and SCM integrate configure and maintain security tools and checks (e.g. SAST SCA secrets container/IaC scanning WAF integrations) across build test and deploy stages; ensure findings are routed to the right owners.

• Design and maintain security automations build and operate inhouse scripts services and integrations that reduce manual work (e.g. policy checks ticket creation asset classification ownership mapping).

• Govern pipeline and repository usage define and enforce secure patterns for source control CI/CD workflows/runners artifact repositories and credentials; review and approve new integrations and automations from a security perspective.

• Harden infrastructure that supports delivery help set up and maintain secure server and runner environments (cloud and onprem) and triage DevOps/IT/OPS vulnerabilities (e.g. misconfigurations exposed services) with the relevant teams.

• Provide visibility and evidence build dashboards and reports that show security posture and trends for CI/CD and DevOps environments and provide data for audits and compliance where needed.

• Document and train write clear documentation for security automations standards and runbooks; provide adhoc training and guidance to DevOps R&D and IT teams on DevSecOps best practices.

Requirements

Must Have

• 3 years of experience in server/infra management and/or CI/CD engineering with significant security responsibilities (DevSecOps AppSec engineeringDevOps Security Championor similar).

• Strong experience with CI/CD platforms and automation (e.g. Jenkins TeamCityHarnessGitHub Actions GitLab CI or similar) and Gitbased workflows.

• Proficiency with Unix/Linux environments (Windows Server experience is an advantage) plus solid understanding of basic networking concepts (IP TCP/UDP firewalls load balancers).

• Handson experience with security tooling and practices such as WAF SAST/SCA vulnerability scanning secrets management or container/IaC security.

• Scripting/automation skills in at least one language (e.g. Bash Python Groovy PowerShell) for building and maintaining tools and integrations.

• Strong analytical and problemsolving skills with the ability to work autonomously and drive results in a crossfunctional environment.

Nice to Have

• Background as a DevSecOps engineer orDevOpssecurity champion in a large R&D organization.

• Experience with cloud platforms (e.g. AWS or similar) configuration/management tools (e.g. Kubernetes Ansible Terraform Docker) or private clouds/virtualization.

• Familiarity with database administration and additional securityrelevant areas (network debugging tools logging/monitoring stacks).

Personal Attributes

• Automationfirst builder:you prefer robust reusable guardrails over oneoff manual fixes.
  

• Collaborative bridgebuilder:effective at working between security DevOps/IT and R&D teams.
  

• Proactive and curious:selfmotivated learner who stays current on DevSecOps and supplychain threats and turns that knowledge into practical improvements for Playtika.