Senior Application Security Engineer

Company Description

We’re the world’s leading sports technology company, at the intersection between sports, media, and betting. More than 1,700 sports federations, media outlets, betting operators, and consumer platforms across 120 countries rely on our know-how and technology to boost their business.

Job Description

As a Senior Application Security Engineer, you’ll work together in a team of experienced specialists, architects, and senior engineers on core engineering roadmap delivery and on product development teams support.

We strive for excellence and are actively adopting clean code tools and practices. We believe in the engineering principle "if it's not tested, its broken" and we make sure our products, services, and infrastructure are thoroughly tested. We follow a cloud-native strategy; managed services enable us to focus on the problems that interest us most – and we invest in our people with AWS training as we recognize the skills modern developers need to succeed.

THE CHALLENGE

• Threat modelling, defining the strategy and setting up the CDN security layer - WAF, DoS protection and scraping prevention.
• Integration of security tools into the SDLC process (SAST, DAST, SCA, etc.) and scan optimizations.
• Working closely with the core team, global security and privacy teams on planning for security audits, issue remediation and ensuring product compliance.
• Vulnerability management of identified vulnerabilities.
• Defining, maintaining and educating developers on the vulnerability mitigation procedures.
• Investigating unlicensed product usage, applying prevention measures and improve licensing service resiliency.
• Documenting defined security related procedures, configuration changes and product compliance results.
• Understanding of product and business needs and apply security best practices to protect the products and services.
• Educating the team and championing good security and privacy practices.

YOUR PROFILE

• Experience as a security engineer, an engineer with a strong background in administration of security services, penetration testing or web application security.
• Hands on experience with Gitlab pipelines, AWS, OSINT or penetration testing background is a plus.
• Understanding of web application and API development.
• Understanding of security best practices and ability to apply that knowledge in a development environment.
• Reliable, meticulous and diligent.

OUR OFFER

• A collaborative environment with colleagues from all over the world (Engineering offices in Europe, Asia and US).  
• Ability to shape your own workday and career via a clearly defined professional and personal development plan.
• Opportunity to work with senior leadership team and develop yourself within an inspiring and fast-growing company.
• Vibrant and inclusive community, including Women in Tech and Pride groups which welcome all participants.
• Hybrid work model.
• New office with several additional benefits.

Additional Information

At Sportradar, we celebrate our diverse group of hardworking employees. Sportradar is committed to ensuring equal access to its programs, facilities, and employment opportunities. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. We encourage you to apply even if you only meet most of the requirements (but not 100% of the listed criteria) – we believe skills evolve over time. If you’re willing to learn and grow with us, we invite you to join our team!