We are consistently ranked as one of the most widely used sports betting platforms in the countries where we operate. With millions of active users each week, we aim to deliver the best possible industry experience.

In this role, you will design, implement, and monitor security measures to protect our systems, applications, and infrastructure, including WAF, DDoS protection, DNS, networking, VPN technologies, and more. We are seeking a skilled team member who enjoys security work and has both broad and deep expertise in the field.

Our technology stack includes:
Languages: Python, AWS Lambda
Networking: AWS Cloud, AWS Global Accelerator, PFSense, OpenWRT
VPN: IPSec, L2TP, OpenVPN, WireGuard, Zerotier
Computing and Storage: AWS EC2, VPC, EBS, S3
Monitoring: AWS CloudWatch
Logging: ELK, OpenSearch
CDN: CloudFront, Cloudflare
WAF: AWS WAF, Cloudflare
DDoS Protection: AWS Shield, Cloudflare
Tools: Kali Linux, MobSF, Frida, Metasploit, Wireshark, BurpSuite, NMAP, and more

Responsibilities include:
Working with project teams to develop secure workflows, systems, and services
Creating security standards and best practices
Assessing software, infrastructure, and online requirements and adapting them to business needs
Developing security tools and technical solutions to reduce vulnerabilities and automate recurring tasks
Ensuring rapid awareness across the organisation regarding security incidents
Writing detailed reports with findings, outcomes, and recommendations
Identifying cost-efficient cybersecurity solutions
Conducting internal and external security assessments and audits
Supporting team members with cybersecurity and technical needs

Requirements:
At least 3 years of experience as a Security Engineer or similar role
Basic coding familiarity with HTML, CSS, shell scripting, Python, and other languages
Strong understanding of database and operating system security
Ability to identify vulnerabilities such as SQLi, XSS, CSRF, SSRF, authentication and authorization issues, and other web security flaws
Knowledge of OAuth, SAML, certificate authorities, OTP/TOTP
Understanding of browser security controls like CSP, HSTS, and XFO
Experience with web security tools such as Arachni and BurpSuite
Ability to apply best practices across the organisation
Hands-on experience with firewalls, intrusion detection, antivirus, authentication systems, log management, and content filtering
Proficiency in network security, security systems, and monitoring tools
Fluent written and spoken English

Beneficial:
Cybersecurity certifications such as CISSP, CISA/CISM, CompTIA Security+, CEH, or GSEC
Certifications such as PMP or ISO 27001 Lead Auditor

Benefits:
Quarterly bonuses
Flexible hours with core working time from 10am to 3pm local time
High-quality equipment
Referral bonuses
28 days of paid annual leave
Annual company retreat
Highly skilled colleagues in a global and diverse organisation
Payment through DEEL
Small teams where your contributions matter
A stable and established global business offering long-term security

Our Mission:
To be a daily entertainment platform for everyone

Our Operating Principles:
1. Create value for users
2. Act in Sporty’s long-term interests
3. Prioritise product improvement and innovation
4. Be responsible
5. Maintain integrity and honesty
6. Respect confidentiality and privacy
7. Ensure stability, security, and scalability
8. Work hard with passion and pride

Interview Process:
Online HackerRank assessment (up to 90 minutes)
Remote video screening with Talent Acquisition
Remote interviews with three team members (45 minutes each on the same day)
Feedback provided within 24–72 hours

Post-Interview:
Feedback call after a successful interview
Offer and contract issuance
ID verification via Zinc and two references from previous employers

Working at Sporty:
Our culture is performance-driven, with strong support to help you grow and overcome obstacles. Employees generally choose their own working hours as long as collaboration and participation in stand-ups are maintained. We combine the stability of a global, structured organisation with the energy of a startup. Sporty is independently run and financed, allowing us to make decisions based on building the best platform in our industry without external pressure. We are deeply tech-focused and committed to taking great care of our team members.