Security Engineer

Join to apply for the Data Security Engineer role at Scopely.Scopely is looking for a Data Security Engineer to join our Data Protection team in Mexico City.During data protection every day it is a shared understanding that we inspire a passion for data privacy and security.The Data Protection Engineering Team safeguards Scopely's data stores, sensitive information, and intellectual property.We assess the data security hygiene of our games, investigate internal, partner, and vendor security incidents, enhance data loss prevention measures, and collaborate across teams to maintain a secure environment for our global community of players.What You Will DoWe'll help mature our corporate security and data protection programs, investigate complex incidents, and enhance visibility into sensitive data movement across the organization.Data Loss PreventionDesign, test, deploy, and manage enterprise DLP automated response across endpoints and cloud servicesDeploy custom risk-tier-based policies and detection rules to reduce false positives while improving efficacy and user experienceTranslate DLP and insider-risk findings into preventive controls (policy updates, browser controls, egress blocks) and targeted training (nudges)Build out our backlog of our internal Security AI tooling catalogueInternal Investigations & ResponseAssess and investigate complex insider and third-party risk incidents, policy violations, and digital behaviours of concern, providing a thorough and mature investigative process from start to endTurn manual runbooks into idempotent workflows (CLI jobs, serverless functions, or CI jobs) with robust logging, metrics, and alertingDocument findings clearly and concisely to both technical and non-technical audiencesUtilize OSINT techniques to develop investigation plans, gather evidence, and enrich findingsBuild and enhance automated detection logic for data misuse using scripting, AI, or rule-based systemsCross-Functional EnablementWork with privacy, compliance, and governance teams to align controls with regulatory requirements (e.G., CCPA, GDPR)Partner with IT, game studios, and platform teams to embed secure defaults, policy-as-code, and self-service toolingSupport internal and external audits, policy reviews, and compliance syncs, performing investigations across both digital and human domainsWhat We're Looking ForMinimum 4 years of experience in security engineering or security data analysisExperienced in handling data leaks and insider security incidents, leading multiple investigations from initiation to resolutionHands-on experience administering several of the following: Okta, Jamf, Meraki/NinjaRMM, Code42 Incydr, Google Workspace, Slack, Confluence, CASB/DLP platforms, and Island Enterprise BrowserDemonstrated confidentiality and discretion when managing sensitive data and investigations, adhering to employment law and need-to-know principlesComfortable leveraging AI tools to automate repetitive tasks, accelerate analysis, and enhance reporting accuracy and clarityPossess an agile mindset and a collaborative spirit, with familiarity in Agile or Scrum methodologiesProven ability to analyse and interpret security data to identify potential threats, vulnerabilities, and areas for improvementStrong English language skills are required for this role as we have a highly diverse and global businessBonus PointsExperience working with global teams across multiple time zonesExperience in the gaming industry or working on protecting intellectual propertyBackground in Gaming or IP protection experience, SOAR, data engineering, or System engineeringWe are committed to creating a diverse, supportive work environment where everyone is treated with respect.We are committed to providing equal employment opportunities and welcome individuals from all backgrounds to join us and embrace the adventureEmployment at Scopely is based solely on a person's merit and qualifications.Scopely does not discriminate against any employee or applicant because of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), or any other basis protected by law.We also consider qualified applicants with arrest or conviction records, consistent with applicable federal, state and local law.#J-*****-Ljbffr