Offensive Security Engineer

WE ARE BETCLIC

Betclic, European leader in sports betting, is much more than just an online gaming site! Also offering Poker, Horse Racing, and Casino games across various countries and continents, it is an inspiring and forward-thinking company: every day brings new challenges in a modern and dynamic environment. As an influential player in the tech industry, with strong and sustained growth over the years, we believe in innovation through diversity and inclusion and encourage everyone to reach their full potential. With our multicultural team, we provide an optimal, safe and responsible gaming experience, powered by cutting-edge technology.

WHY JOIN US?

At Betclic, success comes from passionate and committed teams. Here's why you'll love working with us:

An international and creative environment where every project is an opportunity to innovate

Hypergrowth that brings new challenges and development opportunities every day

A healthy work-life balance: flexible remote work and workplace well-being are essential pillars for us.

A unique and friendly atmosphere, with 1,300 employees across 5 countries and our headquarters in Bordeaux

Are you passionate about sports and tech? Join us and help shape the future of online gaming!

ENTER THE GAME

As an Advanced Offensive Security Engineer, you will join the Global Security teams, whose role is to:

· Lead advanced Red Team operations to test sophisticated attack scenarios

· Coordinate and technically pilot security audits for regulatory compliance

· Develop custom tools and exploits to strengthen offensive capabilities

· Mentor junior team members and collaborate with cross-functional teams

YOUR ROLE WITHIN BETCLIC

In this role, your main missions will be:

· Lead advanced Red Team operations - Autonomously conduct sophisticated attack simulations, targeting critical assets, cloud infrastructures and Betclic applications.

· Adversary emulation - Mimic tactics, techniques and procedures (TTPs) of advanced cyber attackers to assess our detection and response capabilities.

· Exploit complex vulnerabilities - Identify and exploit critical vulnerabilities in our systems, applications and cloud infrastructures (AWS, Azure, GCP), with development of custom exploits.

· Conduct advanced penetration testing - Perform deep pentests (infrastructure, applications, API, mobile, cloud) and targeted phishing campaigns.

· Pilot security audits - Coordinate and technically pilot external security audits for homologations (PCI-DSS, ISO 27001, ANJ) and annual regulations, ensuring technical preparation and follow-up of recommendations.

· Develop advanced tools and exploits - Design tools, scripts and advanced exploits in Python, C, C++ to strengthen Red Team capabilities.

· Produce high-quality deliverables - Write detailed technical and executive reports, with risk analysis, vulnerability prioritization and remediation roadmaps.

· Cross-team collaboration - Work closely with Blue Team, Cloud, DevSecOps teams to improve security controls and detection processes.

· Mentorship - Guide and train junior team members on advanced offensive techniques.

· Strategic watch - Conduct active surveillance on new threats, exploits and attack techniques, and contribute to offensive security strategy.

WHO ARE WE LOOKING FOR?

We are looking for passionate and curious professionals who bring kindness and a touch of enthusiasm!

This job is for you if:

· You have an engineering degree, computer science degree, or equivalent.

· You have significant experience of 3-5 years in offensive security (Red Team, advanced pentesting) with demonstrated expertise on complex projects.

· You have proven experience in offensive security in cloud environments (AWS, Azure, GCP).

· You master several programming languages (Python, C, C++, Go, PowerShell) and exploit development.

· You have deep understanding of operating systems (Windows, Linux), network protocols and cloud architectures.

· You excel in technical communication and creation of actionable reports for different audiences (technical and executive).

· You possess recognized certifications in offensive security (OSCP, OSEP, CRTO, CRTE, or equivalent).

· You have experience in piloting or participating in regulatory security audits.

· And finally, you speak English fluently to collaborate in an international environment.

WHAT ARE THE RECRUITMENT STEPS?

If your application is shortlisted, Adèle will contact you within a week for an initial HR screening (30 minutes). Then, you will meet with your future manager and a senior member of the technical team.

Next, you will complete a practical pentest technical test (classic CTF challenge). Then, you will complete the AssessFirst test (personality, motivation and cognitive reasoning).

Finally, Adèle will conduct a final HR interview to review your background and AssessFirst results.

The recruitment process usually takes between 6 to 8 weeks to ensure an optimal experience for you.

WHAT CAN YOU EXPECT?

✅ 25 days of paid leave and 10 RTT days

A Ticket Restaurant® card credited with €10 per day (50% funded by Betclic)

100% health insurance coverage for you and your children

50% reimbursement of public transport costs or an annual sustainable mobility allowance (€200 for commuting with sustainable transport)

Hybrid work model

Access to a vast training catalog, with opportunities for professional development every year

Extraordinary office spaces with a rooftop where you can enjoy sunny breaks with a view of the Cité du Vin

Internal events to liven up your daily life

On-site sports classes and organized tournaments (Pilates, circuit training, boxing, yoga, futsal, padel, tennis…)

Permanent contract, available immediately in Bordeaux - remote work possible from another city (on-site presence required 4 days a month)
Betclic Group – 117 Quai de Bacalan, 33300 BORDEAUX

All our positions are open to people with disabilities.