Sportradar's newly formed Rights Protection unit is dedicated to protecting Sportradar's intellectual property and the rights of the sport governing bodies / federations with which we work.
Working within Information Security team and supporting the Rights Protection Unit, the Penetration Tester will be part of a global team responsible for contributing to all aspects relating to the internal protection of Sportradar's data and audio-visual content, within the betting and media industries.
You will work closely with our architecture, development and system administration team as well as the business to raise the security bar.
The role demands a dedicated, forward-thinking intelligence professional who will thrive working in a groundbreaking and fast-paced company to support all Sportradar Group operations.
Provide guidance and help to protect and secure our intellectual property
Penetration testing and monitoring of current digital assets
Perform risk analysis to identify any security issues that could lead to lost or stolen data
Identify security breaches and take action to stop them and prevent them in the future
Working in an international team and environment
Automate our application and infrastructure scanning and reporting
Professional Requirements :
At least 2 years of professional experience in the consulting area (as an auditor, penetration tester, security engineer, etc.
or 3 years of professional experience in an internal team (e.g. DevOps, IT Security, Information Security, Security Operation Center)
Documented experience with performing manual and automated penetration tests of web applications, mobile applications, "thick client" applications and IT infrastructure
Demonstrable skills in the following software : Burp Suite, OWASP ZAP, SoapUI, Kali Linux (Metasploit, nmap, sqlmap, dirbuster, nikto, etc.),
Demonstrable knowledge of application and IT infrastructure security best practices including the following methodologies : OWASP Testing Guide, OSTMM, PTES, NIST
Knowledge regarding Linux / Unix and Windows configuration review with accordance to the CIS benchmark or another well-known requirements
Proficiency in one or more scripting languages - e.g. Powershell, Python, Perl
Excellent understanding of threat modelling and SDLC / SSDLC processes
Ability to communicate with all levels within an organization with appropriate technical content
Desirable Qualifications :
One of the following certifications : OSCP, OSWE, GPEN, GXPN, eWPT, eWPTX, CREST CWAT, CSSLP
Experience performing security source code review (SAST, DAST),
Demonstrable skills on any the following software SATST / DAST tools : IBM AppScan, Checkmarx, Echo Mirage, Javasnoop, Acunetix, Fortify, SonarQube
High level knowledge of cryptography concepts
Experience in security testing and performing security assessments of cloud services
You'll be surrounded by young, enthusiastic, sports and technology industry experts 24 / 7
If you like sports, we've got TVs streaming live footage of the world's biggest events!
Work with state-of-the-art equipment to solve our technological challenges
The opportunity to work and develop within an inspiring and fast-growing company
A challenging but rewarding and fun environment
Sportradar is a global leader in understanding and leveraging the power of sports data and digital content for its clients around the world.
We provide cutting-edge solutions and services to media companies, bookmakers, sports federations and state authorities.
We are a truly international business employing over 2,000 people in more than 30 locations around the world. Our rapid growth has been driven by technological innovation alongside an understanding of our clients' business needs.
It is our commitment to excellent service, quality and reliability that makes us the trusted partner of more than 1,000 companies in over 100 countries.
We occupy a unique position at the intersection of the sports, media and betting industries. This creates an exciting and fast-moving working environment that rewards creative thinking and hard work.
We are passionate about what we do, and we care passionately about our people.
If you think you're up to the challenge, come and help us to grow, innovate and develop!