Security Specialist (Supply Chain Requests)
Warsaw, Poland
Applications have closed
Company Description
We’re the world’s leading sports technology company, at the intersection between sports, media, and betting. More than 1,700 sports federations, media outlets, betting operators, and consumer platforms across 120 countries rely on our know-how and technology to boost their business.
Job Description
Sportradar has established a wider Enterprise Risk Management practice, covering all variety of risks. To cover supply chain risks, the Security Governance Lead is searching for a Security Specialist to look after all requests in our supply chain process - i.e. setting up new suppliers. Working as part of our global Information Security Unit, you will be working with units across Sportradar and reporting to our Security Governance Lead.
As a supporting function, it is crucial to ensure supply chain requests are handled in a timely manner and that requestors are being informed. You will have the overview of all requests, make sure the relevant information needed is available, and you will perform the assessment of the third party, review Data Processing Agreement and contracts for security clauses. As a member of the Security Governance team, you will also be involved in the governance activities.
THE CHALLENGE:
The Security Specialist (Supply Chain) will handle the supply chain assessment (called SOP) process, including:
Evaluation of the risk related to a service provided and a relationship to a supplier. According to the risk, the complexity of the assessment changes.
Assessment of the supplier and identification of the additional requirements (both internal and contractual) for using the service, if applicable. We have a process to perform the assessments in a systematic way.
For critical cases, Security Supply Chain Specialist will ask the supplier to fill out the Security Assurance Plan (SAP) and will follow up until the SAP is acceptable.
Handle security clauses in Data Processing Agreements and Contracts. He will ensure the clauses are applicable (for both Sportradar and the external party) and they cover the potential risks
Manage security requests from third parties.
Create and maintain a portfolio of security clauses than can be used when relevant
Define and maintain security baselines, mainly to share with external parties.
Define security baselines in order to describe our security requirements to suppliers and be responsible for all processes, procedures, tools, documents within the scope.
Work closely with the security, privacy, procurement, risk and legal teams.
YOUR PROFILE:
Security standards: you have proven experienced with the ISO2700x standard
Analytical skills and an eye for detail: you can identify small issues that can have a real impact on the organization
Ability to understand broader business issues: you understand issues in a wider scope in order to help the company resolve structuring problems. You are able to understand the company strategy and needs and you can explain security decisions to business decision makers.
Technical knowledge: you can discuss issues with technical people (developer, system administrators, tribes, etc)
Rigorous: you will deal with multiple review requests in parallel. You are rigorously following the processes and understand your role. You are helping employees to follow the process.
Fluent English (written and spoken) and a willingness to learn the local language
Good communication skills and ability to convince people
Willingness to travel occasionally
Privacy requirements: you have an understanding of privacy laws and requirements to collaborate efficiently with the privacy teams.
Experience with one or more of the following:
Bachelor's degree in a relevant field (e.g. Information Security) or strong expertise related to cyber-security and/or supplier management or risk management
Track record of promoting diversity and creating an inclusive working environment
Demonstrate the experience of deep understanding of supplier management
Understanding of the Security sphere and security threats
Familiarity with different global/regional/country regulatory environments and fiduciary requirements
Deep understanding of IT technology and operations
Certifications like ISO 27005 Risk manager are considered a plus
OUR OFFER:
International work environment
Small and very skilled, experienced team
High degree of individual responsibility
Very good social and physical working environment
Growing business with sound financials
SPORTRADAR
Sportradar is a global leader in understanding and leveraging the power of sports data and digital content for its clients around the world. We provide cutting-edge solutions and services to media companies, bookmakers, sports federations and state authorities.
We are a truly international business employing over 2,000 people in more than 30 locations around the world. Our rapid growth has been driven by technological innovation alongside an understanding of our clients’ business needs. It is our commitment to excellent service, quality and reliability that makes us the trusted partner of more than 1,000 companies in over 100 countries.
We occupy a unique position at the intersection of the sports, media and betting industries. This creates an exciting and fast-moving working environment that rewards creative thinking and hard work. We are passionate about what we do, and we care passionately about our people.
If you think you’re up to the challenge, come and help us to grow, innovate and develop!
Sportradar is an Equal Opportunity Employer. We are committed to encourage diversity within our teams. All qualified applicants will receive consideration without regard to among other things, your background, status or personal preferences.
Your differences help shape our future
#Maketheteam
Additional Information
Sportradar is an Equal Opportunity Employer. We are committed to encourage diversity within our teams. All qualified applicants will receive consideration without regard to among other things, your background, status, or personal preferences
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Governance ISO 27000 ISO 27005 Privacy Risk management SAP Strategy
Perks/benefits: Career development Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs