Blip is a leading tech company focused on software engineering solutions for sports entertainment.
We operate at scale. As part of Flutter Entertainment, we play an essential role in the Group's goal of becoming the global leader in online sports betting and iGaming, developing innovative products and platforms for over 14 million monthly customers worldwide.
We are serious about Tech. We are problem-solvers with big ambitions, keeping a people-first mindset at the core of our work. We prioritize flexibility as we strive to deliver the best technological products and tackle the greatest industry challenges.
Recognizing that everyone brings their own strengths, backgrounds and new perspectives, we empower you to be yourself. That uniqueness shapes the culture of belonging we are so proud of.
The Role
Information Security Engineering is responsible for developing systems for detection, prevention, analysis, reporting, and lifecycle management of software vulnerabilities and other security-related needs. The ideal candidate will be required to demonstrate software development, automation, infrastructure and network security skills and work with a cross-skilled security engineering team, have regular contact with the Development, DevOps, Infrastructure, Network, Architecture, DBAs and other teams or business stakeholders. As a business partner you will provide insightful and timely security advice that enables the business initiatives to move at pace whilst ensuring risks are clearly articulated and appropriately managed.
What You'll be Doing
- Support for Identity & Access Systems (SailPoint and co’), including developing automation in Java & Python.
- Technical background in development (especially Python), capable of driving the engineering needs of the security engineering aspects of products built in-house and/or integrated from 3rd parties.
- Offering guidance to development teams on how to solve vulnerabilities, incidents, business logic flaws or implement security requirements.
- Understand the architecture of production systems (high level) including identifying the security controls in place and how they are used.
- Knowledge about Everything as Code and how to integrate Security into this flow - CI/CD, DAST, SAST, SCA, Security Scanners, Security Controls.
- Knowledge sharing and interest to grow together with the other team members, including support for more junior team members from the team.
- Develop and maintain engineering components autonomously that enable the Security team to ensure internally developed code is following security best practices.
- Able to explain in simple words web technologies and how the full stack works - if need to go into details, use documentation (“a man” of “man man”).
- Incident response (security related), capable to perform triage and with support from other business functions provide mitigation advise.
- Effectively manages stakeholder interaction and expectations.
What You'll Bring
- Good written and verbal communication skills / fluency in English (work related).
- Demonstrating knowledge and experience in real projects is required.
- To be fair with yourself, to have soft skills and a relaxed mindset.
- Resolve and/or escalate issues in a timely fashion.
Nice To Have
- Participated in Bug Bounty programs / CTFs, reported security to other companies and keep up with the security trends and exploits from news.
- Knowledge about how The Internet (web related stack and concepts) is working and interest into deep dive the concepts.
- Research and evaluate emerging technologies to detect, mitigate, triage, and remediate application security defects (XSS, RCE, SQL Injection, CSRF etc).
- Hands on experience in hardening, secure systems, firewalls, vulnerability management, security scanners, etc - buying consultancy is “Acquisition” not “Security”.
- Ability to think like an attacker and solve problems with expertise and ingenuity, but at the same time, be able to think like a gatekeeper (Red/Blue Team).
- Capable of suggest and implement security controls for both public & private clouds.
This is what you should have. What do we have, you ask? Well...you can check our amazing perks & benefits right here !
So ... are you in?
Equal opportunities
At Blip, we are committed to creating a diverse and inclusive workplace. We strongly encourage people from all backgrounds, ways of thinking, and working to apply.
We are committed to including everyone regardless of their race, disability, age, gender identity, sexual orientation, and religion.
Everyone brings different perspectives and experiences; you don’t have to meet all the requirements listed to apply for this role.
If you need any adjustments to apply for the position and to ensure this role aligns with your needs, please send an email to accommodations@blip.pt .
We will only respond to inquiries related to disabilities.