Sporty Group Logo

Sporty Group

Information Security Engineer

Reposted 18 Days Ago
Remote
9 Locations
Mid level
Remote
9 Locations
Mid level
The role involves engineering and monitoring security measures for computer systems, implementing best practices, conducting security tests, and developing security tools to mitigate vulnerabilities.
The summary above was generated by AI

We consistently top the charts as one of if not the most used Sports Betting website in the countries we operate in. 

With millions of weekly active users, we strive to be the best in industry for our users.


In this role, you will Engineer, implement and monitor security measures for the protection of our computer systems, applications and infrastructure, such as, WAF, DDoS, DNS, Networking, VPN etc. We are looking for a capable team member who enjoys security work and possesses both deep and wide expertise in the security space.


Our Stack


Languages: Python, AWS Lambda

Networking: AWS Cloud, AWS Global Accelerator, PFSense, OpenWRT

VPN: IPSec, L2TP, OpenVPN, Wireguard, Zerotier

Computing & Storage: AWS EC2, AWS VPC, AWS EBS, S3

Monitoring: AWS Cloudwatch

Logging: ELK, OpenSearch

CDN: CloudFront, Cloudflare

WAF: AWS WAF, Cloudflare

DDoS Protection: AWS Shield, Cloudflare

Tools: Kali Linux, MobSF, Frida, Metasploit, WireShark, BurpSuite, NMAP etc


Responsibilities


Work directly with the project teams to facilitate building secure workflows, processes, systems, and services

Develop best practices and security standards for the organisation

Understand software, infrastructure and internet needs and adjust them according to the business environment

Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks

Ensure the organisation knows as much as possible, as quickly as possible about security incidents

Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement

Find cost-effective solutions to cybersecurity problems

Conduct the internal/external security test/audit on our service, application, and infrastructure

Assist fellow Team Members with cybersecurity, software, hardware or infrastructure needs


Requirements


3+ years' experience of working as a Security Engineer or other relevant position

Basic coding skills such as HTML, CSS, Shell Script, Python and other languages

In-depth knowledge of database and operating system security

Ability to discover and identify  SQLi, XSS, CSRF, SSRF, authentication and authorisation flaws, and other web-based security vulnerabilities (OWASP Top 10 and beyond)

Knowledge of common authentication technologies including OAuth, SAML, CAs, OTP/TOTP

Knowledge of browser-based security controls such as CSP, HSTS, XFO

Experience with standard web application security tools (Arachni, BurpSuite)

An understanding of best practices and how to implement them at a business-wide level

Hands-on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering

Hands-on experience in network security and networking technologies and with system٫ security, and network monitoring tools

Fluency in English written and spoken


Beneficial


CyberSecurity certifications such as CISSP, CISA/CISM, CompTIA Security+, CEH, or GSEC would be beneficial

Certifications such as  PMP, ISO 27001 LA would be beneficial

Top Skills

Aws Cloud
Aws Cloudwatch
Aws Ebs
Aws Ec2
Aws Global Accelerator
Aws Lambda
Aws Shield
Aws Vpc
Aws Waf
Burpsuite
Cloudflare
Cloudfront
Elk
Frida
Ipsec
Kali Linux
L2Tp
Metasploit
Mobsf
Nmap
Opensearch
Openvpn
Openwrt
Pfsense
Python
S3
Wireguard
Wireshark
Zerotier

Similar Jobs

7 Days Ago
Easy Apply
Remote
28 Locations
Easy Apply
Mid level
Mid level
Artificial Intelligence • Machine Learning • Natural Language Processing • Conversational AI
The Information Security Compliance Engineer will design and maintain security governance, risk management, and compliance frameworks. Responsibilities include supporting audits, updating security policies, and enhancing security processes to align with standards like ISO27001, NIST, and SOC frameworks. Strong communication skills are essential for educating staff and managing internal audit processes.
Top Skills: Compliance FrameworksGovernanceIcfr/SoxInformation SecurityIso27001NistRisk ManagementSecurity ComplianceSoc 1Soc 2
7 Hours Ago
Remote
Hybrid
2 Locations
Mid level
Mid level
Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
The role involves analyzing security alerts, conducting incident response, performing malware analysis, and improving security processes. Candidates need technical skills in incident handling and communication abilities.
Top Skills: .NetCC#LinuxmacOSPerlPowershellPythonRuby On RailsVbWindows
9 Hours Ago
Remote
Hybrid
6 Locations
Senior level
Senior level
Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
The Sr. Cloud Red Team Engineer emulates threat actors in cloud environments to enhance CrowdStrike's security capabilities and conducts security assessments.
Top Skills: .NetAWSAzureC/C++GCPGdbGhidraGoIdaRustWindbg

What you need to know about the Sydney Tech Scene

From opera to comedy shows, the Sydney Opera House hosts more than 1,600 performances a year, yet its entertainment sector isn't the only one taking center stage. The city's tech sector has earned a reputation as one of the fastest-growing in the region. More specifically, its IT sector stands out as the country's third-largest, growing at twice the rate of overall employment in the past decade as businesses continue to digitize their operations to stay competitive.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account