Skip to main content
LeoVegas Group

Senior Application Security Engineer

5w

LeoVegas Group

SE · Full-time · SEK 900,000 – SEK 1,200,000

About this role

We are looking for a hands-on Senior Application Security Engineer to become a founding member of our security team. You will join a highly regulated iGaming environment where uptime, data integrity, and user trust are paramount. You will shape the security of our consumer-facing platforms and the cloud infrastructure they run on.

You will embed security into every stage of the development lifecycle, from threat modeling at design time to security review before release. You will drive security testing and code review across web and mobile apps, and harden APIs with a focus on authorization and abuse prevention.

As a founding member, you will help shape our application security practice and tooling from the ground up. You will work closely with engineering and product teams to champion a 'Security by Design' culture, balancing compliance with business agility. You will also manage WAF and DDoS mitigation, understanding that availability is revenue.

This role offers the chance to drive strategic partnerships, such as collaborating with Google to architect future AI workflows and security frameworks. You will act as the technical bridge for regulatory and ISO certifications, directly impacting user trust and real-time operations. Your work will directly affect the bottom line in a high-stakes environment.

Requirements

  • Strong background in securing high-scale, consumer-facing applications across mobile and web, with deep knowledge of the OWASP Top 10.
  • Ability to read and audit code in modern high-level languages and use automated tools.
  • Deep foundational understanding of networking protocols (TCP/IP, DNS, HTTP/S, TLS).
  • Working knowledge of cloud security, Kubernetes, and the trade-offs of running microservices at scale.
  • Experience thriving in industries with strict compliance requirements (iGaming, Fintech or Healthcare).
  • Proficiency in automating security workflows with Python or similar scripting languages.
  • Ability to weigh business goals against security risk and explain controls to non-technical stakeholders.

Responsibilities

  • Embed security into every stage of the development lifecycle, from threat modeling at design time to security review before release.
  • Drive and run security testing and code review across web and mobile apps.
  • Review and harden APIs with focus on authorization and abuse prevention.
  • Manage and tune WAF and DDoS mitigation.
  • Help harden cloud environment where it matters most for application security.
  • Automate security checks and reduce manual toil across pipelines and environments.
  • Act as the technical bridge for regulatory and ISO certifications.
  • Drive collaboration with Google to architect future AI workflows and security frameworks.

Benefits

  • Be a founding member of the security team, helping shape application security practice and tooling from the ground up.
  • Work in a high-stakes environment where security directly affects user trust, real-time operations, and the bottom line.
  • Opportunity to drive strategic partnerships, including collaboration with Google on AI workflows and security frameworks.