Senior Information Security Engineer @ Sportradar

Senior Information Security Engineer
Job Purpose:

The Security Engineering squad is a group of security engineers with the clear mission to enable IT Security and Information Security processes by internally providing specialized services. The squad acts as an internal service provider supporting both security focused teams and other business units. As Subject Matter Experts (SME), Security Engineers are required to be technically equipped to take over responsibility of services operated and offered internally. The services in scope currently cover typical SOC solutions (SIEM, NIDS, SOAR, WAF, etc.).

Accountabilities and Activities:
Take responsibility over a set of toolsets.
Design, architect and implement technical solutions based on business requirements.
Perform regular maintenance to mature the service setup and ensure a healthy state.
Implement continuous improvements following business updates.
Adapt the service based on self-driven recommendations and user requirements.
Ensure service availability by continuous monitoring of resources, service usage and license utilization.
Identifying opportunities to improve security services and monitoring.
Act as a primary point of contact towards internal users in addition to conducting ongoing and on demand training internally.
Ensure and maintain compliance of the toolsets in scope for the various audits (ISO, SOX, etc.).
Conduct Proof of Concept/Value by researching technologies and evaluating vendors and products following industry best practices.
Support product and vendor decisions with planning, implementation and documentation.
Support your team members on their tasks.
Maintain and develop detailed and up to date internal documentation.
Contribute to the development and implementation of security governance in IT, ensuring application security principles are applied during design and into business as usual processes to reduce risk, drive adoption and adherence to policies, standards and guidelines by the wider business.
Provide advice and guidance to other teams within the business on good practice and maintain relevant and current industry knowledge.

Required Experience:
5+ years of experience working in a security operations environment, preferably in a security engineering role. (or a related role, i.e. System Administrator with security responsibilities).
Familiarity with cloud/virtualization technologies (AWS, GCP and K8s) and automation (ansible,
puppet, terraform etc.)
Understanding of fundamental security concepts and terminologies (CIA, basic cryptography
knowledge etc.)
Advanced scripting skills in Python, Bash, PowerShell etc.
Advanced Network knowledge, including Firewall management.
Familiarity with SIEM tools (Splunk, Elastic Stack etc.)
Good knowledge of identified operating system platforms; routers, network protocols, and security architecture.
Good knowledge of industry standard security tools for implementation, administration and usage.
Advanced networking, analysis and security skills.
Ability to work independently, to carry responsibility and to self-learn.
Excellent oral and written communication skills for both technical and non-technical audiences.
Fluency in English.

Desired Experience:

Experience working in a Security Operations Centre or as a Security Engineer.
Fluency in programming languages i.e. Python.
Applied experience working with M365 security tools (MDATP, MS Defender for Identity etc.)
A track record of technical delivery working within a fast paced and pressured environment.
Desired Qualifications, Education and Certifications
Advanced college coursework in Computer Science or Information Technology, or equivalent experience.
Bachelor’s Degree in Computer Science, Information Technology, Information Security or similar, or equivalent industry experience.
Industry certifications such as: CISSP/CISM, SANS GIAC Certifications, C.E.H/L.P.T, Other relevant certs.

5+ years of experience working in a security operations environment, preferably in a security engineering role. (or a related role, i.e. System Administrator with security responsibilities).
Familiarity with cloud/virtualization technologies (AWS, GCP and K8s) and automation (ansible, puppet, terraform etc.)
Understanding of fundamental security concepts and terminologies (CIA, basic cryptography knowledge etc.)
Advanced scripting skills in Python, Bash, PowerShell etc.
Advanced Network knowledge, including Firewall management.
Familiarity with SIEM tools (Splunk, Elastic Stack etc.)
Good knowledge of identified operating system platforms; routers, network protocols, and security architecture.
Good knowledge of industry standard security tools for implementation, administration and usage.
Advanced networking, analysis and security skills.
Ability to work independently, to carry responsibility and to self-learn.
Excellent oral and written communication skills for both technical and non-technical audiences.
Fluency in English.
Desirable Experience:
Experience working in a Security Operations Centre or as a Security Engineer.
Fluency in programming languages i.e. Python.
Applied experience working with M365 security tools (MDATP, MS Defender for Identity etc.)
A track record of technical delivery working within a fast paced and pressured environment.
Desired Qualifications, Education and Certifications
Advanced college coursework in Computer Science or Information Technology, or equivalent experience.
Bachelor’s Degree in Computer Science, Information Technology, Information Security or similar, or equivalent industry experience.
Industry certifications such as: CISSP/CISM, SANS GIAC Certifications, C.E.H/L.P.T, Other relevant certs.
Senior Information Security Engineer
Job Purpose:

The Security Engineering squad is a group of security engineers with the clear mission to enable IT Security and Information Security processes by internally providing specialized services. The squad acts as an internal service provider supporting both security focused teams and other business units. As Subject Matter Experts (SME), Security Engineers are required to be technically equipped to take over responsibility of services operated and offered internally. The services in scope currently cover typical SOC solutions (SIEM, NIDS, SOAR, WAF, etc.).

Accountabilities and Activities:
Take responsibility over a set of toolsets.
Design, architect and implement technical solutions based on business requirements.
Perform regular maintenance to mature the service setup and ensure a healthy state.
Implement continuous improvements following business updates.
Adapt the service based on self-driven recommendations and user requirements.
Ensure service availability by continuous monitoring of resources, service usage and license utilization.
Identifying opportunities to improve security services and monitoring.
Act as a primary point of contact towards internal users in addition to conducting ongoing and on demand training internally.
Ensure and maintain compliance of the toolsets in scope for the various audits (ISO, SOX, etc.).
Conduct Proof of Concept/Value by researching technologies and evaluating vendors and products following industry best practices.
Support product and vendor decisions with planning, implementation and documentation.
Support your team members on their tasks.
Maintain and develop detailed and up to date internal documentation.
Contribute to the development and implementation of security governance in IT, ensuring application security principles are applied during design and into business as usual processes to reduce risk, drive adoption and adherence to policies, standards and guidelines by the wider business.
Provide advice and guidance to other teams within the business on good practice and maintain relevant and current industry knowledge.

Required Experience:
5+ years of experience working in a security operations environment, preferably in a security engineering role. (or a related role, i.e. System Administrator with security responsibilities).
Familiarity with cloud/virtualization technologies (AWS, GCP and K8s) and automation (ansible,
puppet, terraform etc.)
Understanding of fundamental security concepts and terminologies (CIA, basic cryptography
knowledge etc.)
Advanced scripting skills in Python, Bash, PowerShell etc.
Advanced Network knowledge, including Firewall management.
Familiarity with SIEM tools (Splunk, Elastic Stack etc.)
Good knowledge of identified operating system platforms; routers, network protocols, and security architecture.
Good knowledge of industry standard security tools for implementation, administration and usage.
Advanced networking, analysis and security skills.
Ability to work independently, to carry responsibility and to self-learn.
Excellent oral and written communication skills for both technical and non-technical audiences.
Fluency in English.

Desired Experience:

Experience working in a Security Operations Centre or as a Security Engineer.
Fluency in programming languages i.e. Python.
Applied experience working with M365 security tools (MDATP, MS Defender for Identity etc.)
A track record of technical delivery working within a fast paced and pressured environment.
Desired Qualifications, Education and Certifications
Advanced college coursework in Computer Science or Information Technology, or equivalent experience.
Bachelor’s Degree in Computer Science, Information Technology, Information Security or similar, or equivalent industry experience.
Industry certifications such as: CISSP/CISM, SANS GIAC Certifications, C.E.H/L.P.T, Other relevant certs.
,[Take responsibility over a set of toolsets., Design, architect and implement technical solutions based on business requirements., Perform regular maintenance to mature the service setup and ensure a healthy state., Implement continuous improvements following business updates., Adapt the service based on self-driven recommendations and user requirements., Ensure service availability by continuous monitoring of resources, service usage and license utilization., Identifying opportunities to improve security services and monitoring., Act as a primary point of contact towards internal users in addition to conducting ongoing and on demand training internally., Ensure and maintain compliance of the toolsets in scope for the various audits (ISO, SOX, etc.)., Conduct Proof of Concept/Value by researching technologies and evaluating vendors and products following industry best practices., Support product and vendor decisions with planning, implementation and documentation., Support your team members on their tasks., Maintain and develop detailed and up to date internal documentation., Contribute to the development and implementation of security governance in IT, ensuring application security principles are applied during design and into business as usual processes to reduce risk, drive adoption and adherence to policies, standards and guidelines by the wider business., Provide advice and guidance to other teams within the business on good practice and maintain relevant and current industry knowledge.] Requirements: AWS, Virtualization, GCP, K8s, Ansible, Puppet, Terraform, Cryptography, Python, Bash, PowerShell, Splunk, Operating system, Networking, Protocols, Microsoft Dynamics 365, MS Dynamics, CISSP, GIAC, CISM Additionally: Sport subscription, Training budget, Private healthcare, Flat structure, Small teams, International projects, Free coffee, Canteen, Bike parking, Playroom, Free snacks, Free beverages, Free lunch, Free parking, In-house trainings, In-house hack days, Startup atmosphere, No dress code.