Application Security Engineer

Posted:
9/1/2024, 4:14:21 PM

Location(s):
Antioquia, Colombia ⋅ Medellín, Antioquia, Colombia

Experience Level(s):
Junior ⋅ Mid Level ⋅ Senior

Field(s):
IT & Security ⋅ Software Engineering

Workplace Type:
Remote

 

 

A bit about us

Do you want to join one of the world’s fastest growing sports technology companies?

Genius Sports is at the epicentre of the global network connecting sports, brands and fans through official live data. Our mission is simple. We champion a more sustainable sports data ecosystem that benefits all parties.

We’re looking for enthusiastic and ambitious people to join our talented team.

If you see yourself becoming part of a global family building the future of sports entertainment together, then come and grow with us. 

We put trust in our people to deliver the difference for our clients around the world. It’s why many of the world’s largest leagues & federations such as the NFL, English Premier League, FIBA and NCAA choose to work with Genius Sports.

THE ROLE

We are accelerating our security journey, aiming to deliver the most trusted sports technology and data on the market and elevating security as a competitive differentiator. Our Security vision is to win customers, partners, and fans based on trust in our ability to always protect their data. We strive to achieve this through our mission to always embed security into the way we act and the products we deliver.

Are you ready to help to transform the security posture and culture in an innovative environment? We are seeking an experienced Application Security Engineer who can improve the security practices required to deliver products and services with security by design and by default.

This is a great opportunity to join our team at a fantastic time of growth and truly make an impact.

The successful candidate will be an engaging, self-starter who can operate with high levels of autonomy and strives for continuous improvement.

The candidate should have a track record for both secure architecture design and secure coding within highly technology-driven environments. Also, they will feel comfortable developing automatic tools to increase the productivity of the security practices in the SDLC. The ability to influence, train and support cross-functional teams in managing threats and risks faced by the products.

The Role

Secure Software Architecture and Secure coding expert

  • Designing and implementing internal tools to improve the security practices inside the SDLC.
  • Work closely with engineering, products and operational teams to identify gaps and propose improvements for the SLDC.
  • Perform threat modeling exercises working in tandem with the engineering teams to identify threats and remediations.
  • Conduct security code reviews for critical system components evaluating the non-compliance issues and software standards deviations.
  • Create and execute trainings for the software engineers to improve the knowledge transfer.

Security tooling management

  • Support the setting up of CI/CD for the security tools developed inside the application security team.
  • Design and execute security assessment against multiple kind of software and hardware such as Desktop & Mobile applications, IoT devices, Web APIs, among others.

Other

  • Contribute to the successful execution of the Application Security strategy.
  • Communicate effectively with other organisation engineers to tackle security issues.
  • Researching security trends about both secure architecture and secure coding to improve continuously the security practices in the organisation.

REQUIRED SKILLS & EXPERIENCE

Who you are:

  • Experience with multiple programming languages including mobile apps.
  • Understand software architectures and deployment strategies.
  • Knowledge in Cloud Security specially for AWS cloud provider.
  • Expertise on Kubernetes Security.
  • Knowledge in secure coding and defensive programming.
  • Proficiency in offensive and defensive security technologies.
  • Technology minded without needing to be a deep expert. An understanding of software development practices and cloud environments, able to understand and build credibility with highly technical teams (e.g. IT, Engineers, Product).

What you’ll bring:

  • Deep understanding of secure network infrastructure, secure architecture and secure coding.
  • Extensive experience securing Kubernetes infrastructure.
  • Expertise in cryptography to manage the encryption at rest and in transit on complex systems.
  • Experience in a technology and software engineering-led organisation working with Agile methodologies is desirable.
  • Knowledge of applicable laws, regulations and standards including Data Protection Laws, SOX, ISO 27001, SOC 2 and NIST.

What’s in it for you?

As well as a competitive salary and annual leave allowance, our benefits include health insurance, skills training and much more, depending on the location. We also offer a host of softer benefits, including many social events throughout the year such as summer and winter holiday parties, monthly team building events, sports tournaments, charity days and wellbeing activities. 

 

 

How we work

We have adapted a forward-thinking ‘Ways of Working’ framework, which sets out (amongst other things) the opportunities for Geniuses to work flexibly, remotely and on working holidays. It affects different teams and locations differently, so please ask for further information in how it would work with this role.

Our employees are empowered to stretch the boundaries of what’s achievable, always reaching further and pushing the edges to see what gives. We collaborate, we innovate, and we celebrate. We will continue to grow as an organisation and continue to invest in our highly talented and diverse team of Geniuses. 

Genius Sports Group is proud to be an equal opportunities employer. We recognize and celebrate the benefits that a diverse and inclusive workforce bring to our business, our customers and our staff. We welcome and will consider all applications regardless of age, different abilities or disability, gender re-assignment, marriage, pregnancy, maternity, race or nationality, religion or belief, sex and sexual orientation (and any other applicable status). Please let us know when you apply if you need any assistance during the recruiting process due to a disability.