The Pokémon Company International is hiring an Application Security Engineer

The Pokémon Company International is looking for an Application Security Engineer to protect our systems, applications, and data. You will design and implement security controls, conduct penetration testing, and respond to cybersecurity incidents.

What You'll Do

• Administer and enforce security policies governing system and application access.
• Perform application security testing and reviews to ensure secure configurations and compliance with standards.
• Conduct penetration tests and vulnerability assessments across applications, OS, and network layers.
• Lead threat modeling and security design reviews for new technologies and system changes.
• Respond to security incidents, isolating threats and removing unauthorized access.
• Research emerging cybersecurity threats and conduct root cause analysis on issues.
• Implement technical controls to reduce cloud-based risks, including drift, private-cloud gaps, and web-facing vulnerabilities.
• Collaborate with Information Security partners to advance roadmaps and shared initiatives.
• Integrate security testing and controls into development lifecycle phases.
• Provide management with insights on business impact related to data compromise or system unavailability.
• Work within an agile framework to deliver iterative improvements toward team and organizational goals.
• Respond and investigate cybersecurity incidents, which may be off-hours and on a scheduled rotation.

What We're Looking For

• 5–7 years of relevant experience securing cloud environments, primarily AWS, or equivalent expertise.
• Bachelor’s degree in a related field or equivalent practical experience.
• Strong time management, organizational skills, and attention to detail.
• Solid background in application security engineering and architecture, including MWAF and software development.
• Demonstrated ability to build partnerships and collaborate with cross‑functional teams.
• Strong communication skills, with the ability to clearly present security risks to senior leadership.
• Experience managing security vendors and managed service providers.
• Proven background in incident management and response.

Nice to Have

• Security certifications (CISSP, GIAC, CISA, etc.) are a plus.

Technical Stack

• AWS

Benefits & Compensation

• Salary range for new hires: £59,829.00 - £79,604.00 per year. Full range is £59,829.00 - £107,759.00 per year.
• Company events that celebrate the spirit of Pokémon.
• Competitive cash-based compensation programs.
• 100% employer-paid healthcare premiums for you.
• Generous paid family leave.
• Employer-paid life insurance.
• Employer-paid long and short-term income protection insurance.
• US Employees: 401k Employer Matching.
• UK/IRE/MX Employees: Pension Employer Contributions.
• Fitness reimbursement.
• Commuter benefit.
• LinkedIn learning.
• Comprehensive relocation package for certain roles.

Work Mode

This is a hybrid position based in the United Kingdom.

The Pokémon Company International is committed to the inclusion of all qualified applicants for consideration in our job application process.