Search...

Senior Security Engineer

Atari logo
Atari

Atari is a legendary video game company that designs and sells retro-inspired gaming hardware, classic and new video games, and branded apparel and collectibles. It serves consumers and gaming enthusiasts through its own e-commerce store, offering consoles, arcade machines, handhelds, game cartridges, and merchandise.

Distributed
About Atari

Atari is a well-known video game and entertainment brand offering a wide range of hardware products including the Atari 2600+, Atari 7800+, Atari 400 Mini, Atari VCS, arcade machines, and handhelds like the Super Pocket and Atari Gamestation Go. The company also publishes and sells games across major platforms such as Nintendo Switch, PlayStation, Steam/PC, Xbox, and mobile, spanning genres like arcade, simulation, shooter, and platformer titles, often through publishing labels including Atari, Digital Eclipse, Nightdive Studios, RollerCoaster Tycoon, and Infogrames. In addition to hardware and games, Atari sells apparel, accessories, home and office goods, artwork, and collectibles, serving retro gaming fans and general consumers through its online storefront.

View jobs by Atari

Skills

About the Role

You'll take a hands-on, individual-contributor role focused on security hardening, making Atari's systems harder to attack by designing, implementing, and advising on technical security controls and secure configuration across cloud and on-premise environments. You'll own the technical security posture, including detection and incident response, oversight of external testing, and the security of new environments brought into Atari. Penetration testing is delivered by specialist vendors you scope and oversee, and after-hours monitoring is supported by tooling and managed services, so this isn't a one-person, round-the-clock SOC. You'll work closely with development teams on secure coding, integrate security into DevSecOps pipelines, and use AI-powered tooling to scale your work. You'll also have decision-making authority over technical security matters within agreed thresholds, escalating to the Security & Compliance Lead when needed.

Requirements

  • Based in Newcastle or within commutable distance
  • 4–7 years of hands-on security engineering, with clear strength in security hardening and secure configuration (cloud and/or on-premise), plus working competence across vulnerability management, application security, and detection & response
  • Proven cloud security experience on at least one major platform (AWS, Azure, or GCP); comfort working across more than one
  • Strong scripting for security automation (Python, Bash, and/or PowerShell)
  • Hands-on experience with SIEM, EDR, IDS/IPS, and vulnerability scanners
  • Demonstrated ability to lead technical incident response and perform root-cause analysis
  • Solid understanding of secure coding, OWASP Top 10, and application security
  • Experience overseeing external security testing vendors and driving remediation to closure
  • Familiarity with AI-powered security tools for detection, analysis, and hardening
  • Working knowledge of network security, encryption, and authentication/identity protocols
  • Strong collaboration across cloud, IT, and development teams

Responsibilities

  • Design implement and continuously improve security controls and secure baselines across cloud and on-premise environments
  • Review infrastructure changes and new deployments through a security-architecture lens and recommend hardening before they ship
  • Verify controls are effective and drive misconfigurations and weaknesses to closure
  • Scope and oversee penetration-testing and vulnerability-assessment vendors ensuring comprehensive coverage
  • Run hands-on scans of infrastructure and platforms and act on the results
  • Triage and prioritize findings and drive remediation of critical issues to closure
  • Conduct targeted vulnerability assessments and internal security audits of systems applications and services
  • Work directly with development teams on secure coding practices
  • Review code for vulnerabilities and give developers actionable guidance
  • Integrate security into DevSecOps pipelines and CI/CD workflows
  • Own detection and response and set detection priorities mapped to MITRE ATT&CK
  • Direct tuning of monitoring SIEM and managed-service coverage
  • Lead technical incident response end to end including investigation containment eradication recovery and root-cause analysis
  • Run targeted threat hunting and act as primary technical responder during business hours
  • Assess the security of new companies systems or environments brought into Atari
  • Maintain an authoritative asset inventory and attack-surface map
  • Use and integrate AI-powered security tools for detection hardening and daily security operations
  • Develop scripts and tooling to automate and scale hardening detection and routine operations
  • Stay current with emerging threats and attack techniques and fold them into controls and detections