Key skills
CCloudFrontCDNAkamaiFastlyWAF
About this role
Scalence L.L.C. is seeking a senior security engineer to enhance the security of their streaming platform and content delivery systems. The role focuses on preventing piracy, testing DRM enforcement, and ensuring the resilience of CDN/WAF against application-layer attacks.
Responsibilities:
- Conduct application-layer DDoS testing targeting CDN/WAF systems
- Evaluate DRM enforcement and attempt to bypass content protections
- Test device attestation mechanisms and security tier enforcement
- Provide detailed reports and actionable recommendations to protect premium content
Requirements:
- Strong experience in application-layer (L7) security testing
- Hands-on knowledge of CDN and WAF testing (CloudFront, Fastly, Akamai)
- Deep expertise in DRM systems: Widevine, PlayReady, FairPlay
- Experience with device ID attestation and spoofing tests
- Proficiency with reverse engineering / debugging tools (Frida, Burp Suite, mitmproxy)
- Understanding of video streaming pipelines, secure playback, and encryption
- Ability to design and execute realistic attack simulations without impacting network infrastructure
- Experience with OTT platforms or large-scale video streaming services
- Familiarity with mobile and web player security
- Knowledge of anti-piracy mechanisms and content protection best practices
- Familiarity with DRM license and key management systems