- Monitoring a variety of tools and systems for the identification of vulnerabilities of various types.
- Triage findings for true and false positives based on a variety of factors.
- Assess the risk of the vulnerability in the context of the system architecture, its data, business criticality, and the availability of exploits for that vulnerability.
- Communicating the results of the analysis effectively to key stakeholders in order to create a realistic remediation plan.
- Creating metrics and KPI reports to ensure that findings are being addressed in a timely manner and overall risk to the business is reduced.
- Becoming a Subject Matter Expert on the various tooling to ensure that it is returning optimal results.
- Assisting investigations into security incidents, and acting as subject matter expert for the vulnerability management domain.
- Identifying opportunities to improve effective vulnerability management across Sportradar.
- Contribute to the development and implementation of security policies related to vulnerability management, ensuring application security principles are applied during design and into business as usual processes to reduce risk, drive adoption and adherence to policies, standards and guidelines by the wider business.
- Maintaining and developing documentation for internal processes, security procedures, and remediation guidelines, and ensuring adherence to them.
- Clearly articulating security issues to Sportradar internal teams, both verbally and in written format as well as presenting information to management stakeholders to both technical and non-technical audiences.
- Troubleshooting and helping to resolve security issues for Sportradar teams.
- Acting as subject matter expert and primary point of contact for security questions from Sportradar internal teams.
- Maintaining relationships with strategic third-party Information Security suppliers, partners and industry forums.
- Generating bespoke reporting from the Sportradar monitoring solution in line with business requirements, ongoing investigations, or senior stakeholder requests.
- Provide advice and guidance on procedural and technical security controls.
- Provide advice and guidance to other teams within the business on good practice and maintain relevant and current industry knowledge.
- Work with the technical and solution architects to provide domain/specialist security expertise to IT projects in line with security strategy; contributing to and reviewing project documentation as necessary.
- 5+ years experience working in an enterprise security environment, preferably in a technical security role.
- Knowledge of common operating system & cloud computing platforms, software development frameworks, network protocols, and security architecture.
- Knowledge of industry standard vulnerability management tools usage and implementation.
- Knowledge of current vulnerabilities and attacks.
- Excellent oral and written communication skills for both technical and non-technical audiences.
- Experience working in as a penetration tester or bug-bounty hunter.
- Experience in one or more high-level programming or scripting language.
- Hands-on experience with a variety of scanning tools at different stages of the SDLC.
- A track record of technical delivery working within a fast paced and pressured environment.
- Bachelor's or Master's Degree in Computer Science, Information Technology, Information Security or similar, or equivalent industry experience.
- Industry certifications (or currently working towards them) such as:
- Security certs e.g. CISSP, CISM, CEH, OSCP, SANS etc
- Vendor certs e.g. AWS, Microsoft, Google, etc
- Other relevant certifications.
-
Technology Graduate Analyst Program 2024
19 godzin temu
11101 Citibank Europe plc Poland Warsaw, Polska W pełnym wymiarze godzinCiti's Operations & Technology (O&T) group is looking for Analysts to join Program in Cyber Security Team. The Full Time Analyst position(s) are a two-year rotational development program with a variety of different tracks available. The program starts in September 2024 follow ...
-
Cloud Security Analyst
7 godzin temu
Mettler Toledo Warsaw, PolskaOur Opening and Your Responsibilities As a Cloud Security Analyst will be responsible for ensuring the security of data, applications, and infrastructure within our cloud environment. You will work closely with our IT and security teams to define and implement security polic ...
-
IAM PAM System Analyst
1 dzień temu
EndySoft -, Warszawa, Polska W pełnym wymiarze godzinEndySoft is a dynamic and rapidly growing company based in Central Europe, specializing in providing comprehensive IT resources and services. Our core offerings include body-leasing, team outsourcing, recruitment, and HR solutions, with a strong focus on business automation and s ...
-
Network Security Analyst
1 dzień temu
Stryker Warsaw, Polska W pełnym wymiarze godzinWhy join Stryker? · We are proud to be named one the World's Best Workplaces and a Best Workplace for Diversity by Fortune Magazine Learn more about our award-winning organization by visiting · Our total rewards package offering includes bonuses, healthcare, insurance benefits, ...
-
Principal Cyber Forensics Analyst
6 dni temu
Novartis Warsaw, Polska W pełnym wymiarze godzinSandoz is going through an exciting and transformative period as a global leader and pioneering provider of sustainable Generic and Biosimilar medicines. · Now as an independently listed company, Sandoz aims to increase its strategic focus, operate with greater agility, set clear ...
-
JDE Administrator
1 dzień temu
Stryker Warsaw, Polska W pełnym wymiarze godzinWhy join Stryker? · We are proud to be named one the World's Best Workplaces and a Best Workplace for Diversity by Fortune Magazine Learn more about our award-winning organization by visiting · Our total rewards package offering includes bonuses, healthcare, insurance benefits, ...
-
Tribe Security Assurance Analyst
1 dzień temu
Sportradar Polska Sp. Z O.o. Warsaw, Polska W pełnym wymiarze godzinAbout-project : Sport provides people with a common connection - it can bring together and unite people from all walks of life and all corners of the globe to share sporting moments. · We are NASDAQ-listed and are one of the fastest-growing sport-tech companies on the planet. · B ...
-
Risk and Compliance, Manager
2 dni temu
Xperi Holding Corporation Warsaw, PolskaDescription · Xperi invents, develops and delivers technologies that create extraordinary experiences at home and on the go for millions of people around the world. Powering billions of consumer electronics, connected cars and digital content titles, we make entertainment more i ...
-
Red Team Sr Security Analyst
1 dzień temu
Stryker Warsaw, Polska W pełnym wymiarze godzinWhy join Stryker? · We are proud to be named one the World's Best Workplaces and a Best Workplace for Diversity by Fortune Magazine Learn more about our award-winning organization by visiting · Our total rewards package offering includes bonuses, healthcare, insurance benefits, ...
-
Junior Security Analyst
6 dni temu
Schenker Technology Center Warsaw Sp. Z o.o. Warsaw, PolskaStellenbeschreibung · Performs network security monitoring and incident response for a large organization, coordi-nates with Tier 1 colleagues and with Tier 2 to record, prioritize and initiate incident tickets. · Maintains records of security monitoring and incident response ac ...
-
Data & Analytics Analyst
6 dni temu
NatWest Polska Warsaw, Polska W pełnym wymiarze godzinJoin us as a Data & Analytics Analyst · Take on a new challenge in Data & Analytics and help us shape the future of our business · You'll be helping to manage the analysis of complex data to identify business issues and opportunities, and supporting the delivery of high quality b ...
-
Tribe Security Assurance Analyst
5 dni temu
Sportradar Warsaw, Polska W pełnym wymiarze godzinJob Description · Type of work: Hybrid from Warsaw / remote from Poland · OVERVIEW: · Sport provides people with a common connection - it can bring together and unite people from all walks of life and all corners of the globe to share sporting moments. We are NASDAQ-listed and a ...
-
Cyber Threat Intelligence Analyst
1 dzień temu
Haleon Warsaw, Polska W pełnym wymiarze godzinHello. We're Haleon . A new world-leading consumer health company. Shaped by all who join us. Together, we're improving everyday health for billions of people. By growing and innovating our global portfolio of category-leading brands – including Sensodyne, Panadol, Advil, Voltare ...
-
Mobile Network Security Engineer
6 dni temu
JTendo Warszawa, PolskaAbout the company · jtendo is a telecommunication expert providing the high quality products and services to mobile network operators. Our focus is on security, system integration and product development. · We are looking for an engineer/analyst who will develop threat intel base ...
-
Cybersecurity Senior Analyst
1 dzień temu
Corning Błonie, PolskaRequisition Number: 62510 · Corning is vital to progress – in the industries we help shape and in the world we share. · We invent life-changing technologies using materials science. Our scientific and manufacturing expertise, boundless curiosity, and commitment to purposeful inve ...
Senior Security Vulnerability Analyst - Warsaw, Polska - Sportradar
Opis
Job DescriptionJob Description:
All software and systems contain defects or vulnerabilities in them. This role is concerned with the management of vulnerabilities that are known about, so to ensure an effective remediation strategy is in place to avoid them being exploited by threat actors.
The Senior Security Vulnerability Analyst role in Sportradar's Attack Surface Management team is to be responsible for identifying, assessing the risk they pose and prioritising vulnerabilities for remediation in conjunction with the system owners, employing a risk-based approach. Thereafter actively reporting on their status and managing them to resolution thus reducing the overall risk to the business.
As a Security Subject Matter Expert (SME), Senior Security Vulnerability Analysts are required
to be technically equipped to understand the different types of vulnerabilities, assessing and
prioritise them based upon their exploitabilitiy, severity and other relevant factors including
exposure and business criticality.
They will also be good communicators and work collaboratively with the system owners and
other members of the Security group so that the risk posture can be easily understood with
vulnerabilities being remediated effectively and in a timely manner.
The Senior Security Vulnerability Analyst is a key member of the Attack Surface Management
Team and reports into the Senior Manager of the Product Security unit which is part of the wider Sportradar Security group).
He / She will be a team-player and always seek to learn, improve processes as well as helping collegues in the wider team.
Accountabilities and Activities:
Required Experience:
Desired Experience:
Qualifications, Education and Certifications:
Sportradar is an Equal Opportunity Employer. We are committed to encourage diversity within our teams. All qualified applicants will receive consideration without regard to among other things, your background, status, or personal preferences