쿠팡 · 채용 중 635건
Staff, Security Software Engineer - Coupang Play
Staff, Security Software Engineer - Coupang Play
소프트웨어 엔지니어정규직리드 · 경력 무관
쿠팡플레이의 Staff Security Software Engineer로서 서비스 보안을 총괄하고 취약점을 탐지하는 핵심 역할을 수행합니다. 보안 엔지니어링 역량과 클라우드 보안 전문성을 바탕으로 안전한 소프트웨어 설계 및 보안 정책을 주도할 분을 찾습니다. 보안 아키텍처 설계 및 위협 모델링 경험이 필수이며, 기술 리더십을 통해 조직 내 보안 문화를 정착시킬 수 있어야 합니다.
Coupang Play is an OTT video streaming service. We offer a wide range of content, including Original Series, TV Shows, Movies, and Sports.
We are in the business of delivering exceptional storytelling. We produce award-winning scripted and unscripted Original Series, such as “Boyhood”, “Anna”, and “SNL Korea”. We believe Sports can also be elevated by creative storytelling. Play is now an authoritative destination for Sports, broadcasting K-League, La Liga, Bundesliga, F1, NFL, and other leading leagues and tournaments. We also offer some of the latest movies that were just released in local theaters, bringing more exceptional storytelling to our customers.
To ensure that we deliver all content seamlessly, we invest in Engineering, Product, and Design. Coupang Play is available on all mobile devices, tablets, PC, Smart TV, Apple TV, and Android TV. Our teams keep optimizing how customers discover and stream both VOD and Live content. That includes investments in frontend, backend, and infrastructural developments. We also embrace Machine Learning to refine our CX.
We are still very early in our growth stage. If you enjoy solving complex problems using industry-leading technology or unconventional business approaches, please join us. We are building a world-class team of problem-solvers, all dedicated to delivering exceptional storytelling to our customers.
We are seeking a seasoned and technically focused Staff Security Software Engineer to proactively Protect our services and Detect security vulnerabilities in our environment. You will be the security domain expert in our streaming business that serves millions of customers every day. In addition to being a security domain expert, you will design and implement secure software solutions, write production-grade code, and integrate security controls directly into our services and platforms. This role combines hands-on engineering with strategic leadership to embed security best practices across the organization.
Lead security initiatives and drive continuous improvement in our security posture to protect our critical assets and data from evolving threats.
Subject matter expert for our security technologies, ensuring security is embedded into all phases of our software development lifecycle.
Develop and maintain security-focused libraries, tools, and automation scripts to enforce security standards across services.
Collaborate with engineering teams to implement secure-by-design principles in code, APIs, and infrastructure.
Contribute to code reviews with a focus on identifying and remediating security vulnerabilities.
Actively partner with software, platform engineers, and Coupang Infosec to define, document, and enforce security policies, standards, and procedures. Drive adoption of security best practices through hands-on implementation and mentorship.
Conduct security threat modeling for new and existing applications.
Evaluate, recommend, and implement security and governance tools.
Lead penetration testing and vulnerability assessments.
Act as a lead responder for security incidents, performing detailed analysis and forensic investigations.
Bachelor's or master's degree in computer science, Information Security, or a related field, or equivalent practical experience
Strong software engineering skills with experience in building secure applications and services
Ability to write, review, and optimize code with security in mind (e.g., secure coding patterns, input validation, encryption)
Strong understanding of cryptography, PKI, secure authentication protocols, and authN/authZ in microservices environment
Expertise in network security (e.g., firewalls, VPNs, WAFs, micro-segmentation)
Expertise in security guardrails and tools integration into daily design/coding tasks and CI/CD pipelines
Proficient in securing services operating in a major cloud provider (AWS, Azure, or GCP)
Proficiency in at least one scripting language (Python or Bash) and one general-purpose programming language (Go or Java) for automation and tool development
Exceptional written and verbal communication skills, with the ability to articulate complex security risks to technical and non-technical audiences
Proven ability to lead projects, manage priorities, and meet deadlines
Experience contributing to open-source security tools or frameworks
Ability to speak and write in English in a professional environment
AWS Certified Security – Specialty or equivalent from Azure/GCP
Application Review - 1st Interview - 2nd Tech Interview - Leadership interview – Offer
The exact nature of the recruitment process may vary according to the specific job and may be changed due to scheduling or other circumstances.
Interview schedules and the results will be informed to the applicant via the e-mail address submitted at the application stage.