Staff, Security Engineer - Coupang Play
发布于 大约 21 小时前普通员工/个人贡献者
AI 估算 · 25k–40k
Staff-level security engineer at a top Korean internet company; strong demand for cloud and streaming security expertise drives
职位详情
关于这个职位
Coupang Play is seeking a Staff Security Engineer to lead security initiatives for its OTT streaming platform. You will embed security into the SDLC, develop secure libraries and automation, conduct threat modeling and penetration testing, and respond to incidents. This is a hands-on role combining deep technical expertise with strategic influence.
最低要求
Bachelor's or Master's degree in Computer Science, Information Security, or related field, or equivalent practical experience. Strong software engineering skills with experience building secure applications and services. Ability to write, review and optimize security-conscious code (e.g., secure coding patterns, input validation, encryption). Deep understanding of cryptography, PKI, secure authentication protocols, and authN/authZ in microservices environments. Network security expertise (e.g., firewalls, VPN, WAF, micro-segmentation). Experience integrating security guardrails and tools into design/coding and CI/CD pipelines. Experience securing services running on major cloud providers (AWS, Azure, GCP). Proficiency in at least one scripting language (Python or Bash) and one general-purpose programming language (Go or Node.js) for automation and tooling. Excellent documentation and communication skills, able to explain complex security risks to technical and non-technical audiences. Strong project leadership and priority management skills.
工作职责
Lead security initiatives and protect core assets and data from evolving threats through continuous improvement. Act as a subject matter expert in security technologies to embed security throughout the SDLC. Develop and maintain security-centric libraries, tools, and automation scripts to enforce security standards. Collaborate with engineering teams to implement Secure-by-Design principles for code, APIs, and infrastructure. Participate in code reviews focusing on identifying and fixing security vulnerabilities. Work with software and platform engineers and Coupang Infosec to define and apply security policies, standards, and procedures. Drive adoption of security best practices through hands-on implementation and mentoring. Perform security threat modeling for new and existing applications. Evaluate, recommend, and implement security and governance tools. Lead penetration testing and vulnerability assessments. Act as lead responder for security incidents, conducting detailed analysis and forensic investigations.
优先资格
Production and security experience in video streaming and related data systems. Experience securing applications running on common consumer devices (smart TVs, mobile apps) for video streaming platforms, including DRM integration, anti-tampering technologies, and device authentication. Contributions to open source security tools or frameworks. Ability to speak and write in English in a professional environment. AWS Certified Security – Specialty or equivalent Azure/GCP certification.
AI 洞察
优缺点分析
优点
- Coupang is a leading e-commerce and tech company in Korea, offering a global platform and resources.
- The role is highly technical and hands-on, allowing you to directly shape security for a major streaming service.
- You will work with cutting-edge technologies in cloud, streaming, and security, and collaborate with top talent.
- Competitive compensation and benefits, including potential for RSUs and performance bonuses.
- High responsibility: protecting a service used by millions requires constant vigilance and rapid response.
- Must be comfortable with both strategic leadership and hands-on engineering
- requires balancing multiple priorities.
- Streaming security is complex (DRM, device diversity, anti-piracy) and demands continuous learning.
- Experienced security engineers who enjoy deep technical work, want to own security outcomes, and thrive in a fast-paced, high-impact environment.
缺点 / 挑战
暂无明显挑战项
角色解读
- Advance to Principal Security Engineer or Security Architect, owning organization-wide security strategy.
- Transition into security management (e.g., Director of Security) managing a team of security engineers.
- Deepen expertise in OTT/media security, becoming a go-to expert for streaming platform protection.
- Design and implement secure software solutions for Coupang Play's streaming platform, integrating security controls into services and infrastructure.
- Lead security initiatives including threat modeling, penetration testing, and incident response to protect millions of customers.
- Develop automated security tools and libraries to enforce security standards across the SDLC.
- Collaborate with engineering teams to ensure Secure-by-Design principles are applied to code, APIs, and infrastructure.
- Deep expertise in application security, cryptography, and secure authentication protocols in microservices environments.
- Strong programming skills in Python or Bash for scripting, and Go or Node.js for tool development.
- Hands-on experience with cloud security on AWS, Azure, or GCP, and network security technologies.
- Ability to lead projects, communicate complex risks to both technical and non-technical audiences, and mentor peers.
申请策略
- Demonstrate your ability to communicate security risks to both engineers and managers
- prepare a concise example.
- Research Coupang Play's features and recent security news to show genuine interest during interviews.
- Emphasize your experience building secure software and integrating security into SDLC in previous roles.
- Showcase cloud security projects, especially on AWS, Azure, or GCP, with measurable outcomes.
- Highlight any work with threat modeling, penetration testing, and incident response.
- Mention contributions to open-source security tools or relevant certifications (e.g., AWS Security Specialty).
- If not already proficient, practice Python scripting for automation and Go or Node.js for security tooling.
面试指南
- Use the STAR method (Situation, Task, Action, Result) for behavioral questions. Focus on your role and concrete outcomes.
- For technical design questions, start by clarifying requirements and constraints, then propose a solution with trade-offs, and justify your choices with security principles.
- How would you design a secure authentication system for a microservices-based streaming platform?
- Describe a time you identified a critical security vulnerability and walked through your remediation process.
- How do you approach threat modeling for a new feature? Can you walk through an example?
- Explain how you would secure a CI/CD pipeline for a cloud-native application.
- How would you handle a security incident where customer data might be exposed?
- Review core security topics: OWASP Top 10, cryptography basics, cloud security architecture (AWS IAM, VPC, KMS).
匹配度报告
High-paying, cutting-edge security role at a top Korean tech giant, but on-site and potentially demanding.
薪资福利匹配
Coupang is a publicly traded company with competitive compensation. The role is senior and likely offers strong salary, RSUs, and benefits. Overall above market.
成长发展匹配
The role involves leading security initiatives, mentoring, and working with cutting-edge tech. Clear growth path from Staff to Architect or management.
工作生活匹配
On-site in Seoul with no mention of remote or flexible hours. Korean tech companies often have demanding hours, though Coupang may offer reasonable WLB.
使命价值匹配
Protecting a popular OTT service provides a sense of impact. The streaming industry is growing, and security is critical. However, the mission is not explicitly societal.
酷澎 的其他在招职位
[쿠팡] 프로그램 매니저 - 광고/그로스 전략 (쿠팡이츠)
酷澎 · Seoul, South KoreaAI 估算 · 35k-65k[CPLB] HRM 담당자 (계약직)
酷澎 · Seoul, South KoreaAI 估算 · 18k-28k[쿠팡] 로켓배송 MD 경력자 (가전 신규 브랜드 BM)
酷澎 · Seoul, South KoreaAI 估算 · 50k-80k[쿠팡파이낸셜] 개인(신용)정보보호 담당
酷澎 · Seoul, South KoreaAI 估算 · 25k-50kStaff, Security Engineer - Coupang Play
酷澎 · Singapore, SingaporeAI 估算 · 63k-95k