Application Security Engineer

Location: Vancouver, BC, Canada


This position is no longer open.

Requisition Number: 175674

Position Title: Software Engineer III - Security

External Description:

EA's Secure Product Engineering & Anti-Cheat Response (SPEAR) team ensures that all EA products are developed with security and gameplay integrity as a top priority. We partner with platform development teams and game studios to ensure that our players can enjoy playing games securely and fairly.


We are looking for a Senior Security Engineer to improve the security and gameplay integrity posture of a multi-platform, live service title, and its supporting services. You will report to the Senior Manager of the Verification and Pentest team, and maintain close relationships with SPEAR's Architecture and Design, and Gameplay Integrity Operations teams. Embedded in and working with the game studio, you will focus on the title through multiple iterative stages of product and service design, development and playtesting. The design reviews, threat modelling and security assessments you perform will cover everything from web applications, to network infrastructure, to thick clients and servers. You will help studio partners to make security-focused design and implementation choices. You will find and help to fix security and gameplay integrity issues at scale, protecting our our data, employee data and our players. You understand security principles, hands-on experience of vulnerability assessment, and a passion to learn new technologies, challenge assumptions, and create new solutions.


  • Deliver design reviews and static and dynamic assessments on products running on PC, web, mobile and consoles, identifying and driving the remediation of security and gameplay integrity issues.
  • Partner with SPEAR teams on the scoping and delivery of complex and specialist assessments, making best use of SPEAR subject matter expertise.
  • Develop a broad and deep technical understanding of a single EA title, and central service dependencies, using that understanding to guide your reviews and recommendations.
  • Correctly rate the security or gameplay integrity impact of discovered vulnerabilities and articulate remediation steps to product teams.
  • Guide remediation of vulnerabilities by directly engaging studio developers, providing guidance on fixes and preventative security test cases.
  • Partner with SPEAR to translate important industry security and gameplay security trends into applicable recommendations to the studio development team.
  • Develop educational materials to the studio development team, to raise security IQ.


  • 5+ years of full stack Application Security reviews, including experience with C++, TypeScript and JavaScript.
  • Hands-on experience with security assessment tools and understanding of their applicability and limitations in different assessment scenarios.
  • Experience in 2 or more of the following domains and expertise in at least one: Networking, OS Internals, Cloud Architecture, Web frameworks, or Mobile Architecture
  • Knowledge of best practices and common pitfalls in one or more of: cryptography, authentication mechanisms, authorization controls and DevSecOps
  • Knowledge of multiple of the following exploitation techniques and expertise in at least one: XSS, SQLi, IDOR, MitM, DoS, BOF, or ROP
  • Experience in rating and discussing vulnerabilities according to their CVSS scoring
  • Experience engaging and explaining the importance of security issues and initiate new efforts in mitigating vulnerabilities at-scale
  • Bachelor's degree in Computer Science or Information Security, or equivalent industry experience




Community / Marketing Title: Application Security Engineer

Company Profile:

Electronic Arts Inc. 是全球领先的互动娱乐软件公司。 EA 提供适用于联网主机、个人电脑、手机和平板电脑的游戏、内容和在线服务。

EEOText: About EA We exist to inspire the world to play. Through innovative technology and immersive storytelling, we deliver new ways of experiencing worlds of interactive entertainment for our millions of players worldwide. Our strength lies in the diversity of our people, combining creativity, innovation and passion. We fully champion inclusive culture, and provide opportunities for growing, learning, and leading that allows for the most impactful and rewarding work of our teams’ careers. We put our people first, and we make sure they’re taken care of both in and out of the office. As we reflect on our learnings and successes from remote work, we aim to provide dynamic, collaborative and flexible work environments for our teams. Our employees connect through our Employee Resource Groups, which are actively involved in driving business decisions every step of the way. But our support doesn’t end at the workplace—we also encourage a balanced lifestyle with paid time off and new parent leave, free video games, fitness reimbursement and more. Our goal is to provide a safe, respectful and inspiring workplace for all of our employees. Through our diversity, equity, inclusion and social responsibility programs, we’re doing the work to give everyone the space to be their full selves while giving back to our community. We’re looking for problem-solvers, game-changers, innovators, dreamers, doers—people that are ready to move the needle and build on our success. As our industry accelerates, we aren’t just keeping up—we’re staying ahead of the game. Electronic Arts is an equal opportunity employer. All employment decisions are made without regard to race, color, national origin, ancestry, sex, gender, gender identity or expression, sexual orientation, age, genetic information, religion, disability, medical condition, pregnancy, marital status, family status, veteran status, or any other characteristic protected by law. Electronic Arts also makes workplace accommodations for qualified individuals with disabilities as required by applicable law.

Date Opened: 2022-09-14 13:34:31.373

EEO Employer Verbiage:

EA 是一个奉行机会均等的雇主。 所有招聘决定均不考虑种族、肤色、国籍、血统、生理性别、社会性别、性别认同或表达、性向、年龄、遗传信息、宗教信仰、残障状况、医疗状况、怀孕状况、婚姻状况、家庭状况或退伍军人身份等因素的影响。 EA 还会遵照相关法律,为符合条件的残障个体改善工作环境。

Click here to view our Data Privacy Policy.

google-site-verification: google7f7a22bb8fdf2c3d.html