HiringCafe
Posted 1mo ago

Platform Security Engineer

@ ASUS Robotics & AI Center
View All Jobs
Taipei, Taiwan, Taiwan
OnsiteFull Time
Responsibilities:Own security, Harden authentication, Configure IAM
Requirements Summary:Seven-plus years in application or infrastructure security; strong cloud security (GCP), OAuth, CI/CD security, and multi-tenant authorization.
Technical Tools Mentioned:Node.js, Next.js, GCP, IAM, VPC, IAP, Secret Manager, Cloud Armor, OAuth, SAST, DAST, Terraform, CI/CD, Penetration testing
Save
Mark Applied
Hide Job
Report & Hide
Job Description

The ASUS Robotics & AI Center is seeking a Platform Security Engineer to join our global research and development team. This role is central to establishing and maintaining the security posture of our cloud-based platform, spanning application hardening, infrastructure security, and the practices that keep our systems secure as they scale.

We are looking for an experienced engineer with deep expertise in application and cloud security, a proactive mindset for identifying and mitigating risk, and the ability to work effectively across a collaborative, multidisciplinary engineering team. The ideal candidate is a seasoned, self-directed professional who can own security architecture end-to-end while guiding others toward secure development practices.

  • Own application and infrastructure security across the platform, from production launch through long-term scaling.
  • Harden authentication (OAuth/session handling) and API authorization patterns, including multi-tenant access control.
  • Configure and maintain IAM policies, service accounts, and least-privilege access controls across cloud infrastructure.
  • Secure data flows including file uploads, signed URLs, database access, and secrets management.
  • Set up and maintain security monitoring, logging, and alerting systems.
  • Build and maintain security tooling integrated into CI/CD pipelines, including SAST, DAST, and dependency scanning.
  • Perform regular security assessments, dependency audits, and penetration testing.
  • Respond to security incidents and conduct root cause analysis.
  • Evolve security architecture as the product and team scale.
  • Guide the engineering team on secure development practices and document security controls and incident response procedures.