World of Business 
World of Digital 
World of Media 
World of Sport 
What does a Cyber Security Professional do?
Cyber security professionals protect the systems, data and operations of football clubs and sports organisations. From player medical records and transfer information to broadcast infrastructure and fan data, professional football handles huge volumes of sensitive information. Cyber security is one of the fastest growing careers in sport, and one of the most important.
What is a Cyber Security in Football?
A cyber security professional designs, implements and maintains the systems that protect an organisation’s digital infrastructure from attack, breach or accidental compromise. In football, the role covers protecting commercial systems (ticketing, retail, CRM), football operations data (medical records, contracts, transfer information), broadcast and matchday technology, and the wider club IT infrastructure.
Cyber security sits across IT, legal and compliance, and works closely with the wider digital, commercial and football operations teams. Some professionals are generalists across the full security function. Others specialise in a particular area such as security operations, penetration testing, governance, or cloud security.
Who do Cyber Security Professionals work for?
Football clubs increasingly employ dedicated cyber security staff, particularly at Premier League level where the volume of commercial data, broadcast technology and player data warrants an in-house function. EFL clubs often work with managed security service providers rather than employing in-house. National governing bodies including the FA, the Premier League and the EFL employ cyber security professionals to protect their own infrastructure and support the wider game.
Beyond direct club employment, the major consultancy and cyber security firms (Deloitte, PwC, KPMG, EY, BAE Systems, Kroll) work with sports clients and run dedicated sports security practices. The wider sports technology industry, broadcasters, betting operators and sports data businesses all employ cyber security professionals.
You can also work as a self-employed or consultancy-based cyber security professional with sports sector clients. Independent specialists are particularly in demand for penetration testing, incident response and compliance work.
If you’re interested in the wider infrastructure side, take a look at our systems engineer career guide. If software development is where your focus lies, our software engineer guide covers that in detail.
What Does a Cyber Security Professional Do Day-to-Day?
The day-to-day work depends on the specialism you focus on and the size of the organisation you work in. A typical role might involve:
- Monitoring and responding to threats – using security operations tools to detect, investigate and respond to potential attacks
- Designing and testing security controls – building the technical defences that protect club systems and data
- Conducting penetration testing – simulating attacks to find weaknesses in club systems before attackers do
- Managing identity and access – controlling who can access which systems and data across the organisation
- Maintaining compliance – keeping the organisation aligned with GDPR, PCI DSS and football-specific data protection requirements
- Training and awareness – educating players, staff and contractors on cyber security risks and behaviours
- Investigating incidents – leading the response to security incidents and breaches when they occur
What Skills Does a Cyber Security Professional Need?
- Foundational knowledge of computer science, networks and operating systems
- Cyber security frameworks and standards (ISO 27001, NIST, Cyber Essentials)
- Network and infrastructure security
- Security operations and threat detection tools
- Penetration testing tools and techniques
- Cloud platforms (AWS, Microsoft Azure, Google Cloud)
- Industry certifications (CompTIA Security+, CISSP, CEH, OSCP)
- Clear communication of risk and technical issues to non-technical stakeholders
- Methodical, analytical thinking
- Curiosity and a commitment to continuous learning
What is the career path for a Cyber Security Professional?
Your career path in cyber security typically starts in an entry-level role such as security analyst, junior penetration tester or IT security administrator. With experience and industry certifications, you progress into senior security analyst, security engineer or specialist consultant roles, before moving into leadership positions such as Head of Cyber Security, Chief Information Security Officer (CISO) or Director of Information Security.
Cyber security skills are highly transferrable. If you choose to, you can move between the sport industry, finance, government, technology or consultancy. Many cyber security professionals build a career across multiple sectors.
What Types of Cyber Security Work Are There?
Cyber security covers several distinct specialisms. Here’s where professionals typically focus:
- Security operations – day-to-day monitoring, threat detection and incident response across the organisation.
- Penetration testing – simulating attacks to identify weaknesses in systems before attackers find them.
- Governance, risk and compliance – aligning the organisation’s security posture with regulatory and policy requirements.
- Identity and access management – controlling who can access which systems and data across the organisation.
- Cloud and infrastructure security – securing the cloud platforms and infrastructure that modern clubs depend on.
How Do You Become a Cyber Security Professional in the UK?
A degree in cyber security gives you the technical and theoretical foundation you need for a modern cyber security career. You study computer science fundamentals, network and operating system security, cryptography, penetration testing, security operations and the legal frameworks around cyber security and data protection.
Industry certifications run alongside formal study and continue throughout your career. Entry-level certifications including CompTIA Security+ are commonly earned during or shortly after a degree. More specialised certifications including CISSP, CEH and OSCP follow as you build experience. The BSc (Hons) Cyber Security at UA92 is built around real-world security practice and gives you the foundation for a career across sport, finance, technology and government.
Where can you study Cyber Security?
UA92’s campus is in Old Trafford, at the centre of one of the most digitally active regions in the country. Greater Manchester is home to a substantial technology, financial services and broadcast cluster, plus a network of football clubs and sports businesses that all rely on strong cyber security. Through industry partnerships including Salford City FC, you have access to opportunities in real digital and technology environments while you study.
Cyber Security BSc (Hons)
Develop the technical, analytical and strategic skills to build a career in cyber security across sport, finance, technology and government. Co-developed with industry and degrees awarded by Lancaster University.
Explore Course
Computer Science BSc (Hons)
For students with a broader interest in computing, software and systems.
Explore CourseDo you need a degree to work in cyber security?
Not legally, but most professional roles require either a relevant degree or equivalent industry certifications and experience. A degree gives you the academic foundation, the network and the credibility that are very difficult to build from outside, and is the most direct route into the profession for most people.
What is the difference between cyber security and systems engineering?
Systems engineers design and maintain the technology infrastructure that organisations depend on. Cyber security professionals protect that infrastructure from attack and compromise. The two roles work closely together, and many professionals work across both early in their careers. Take a look at our systems engineer career guide for more.
Which certifications matter most in cyber security?
CompTIA Security+ is a common entry-level certification. CISSP and CISM are widely respected for senior strategic and management roles. CEH and OSCP focus on offensive security and penetration testing. AWS, Microsoft Azure and Google Cloud security certifications are increasingly important for cloud-focused roles.
Can you work in cyber security across multiple industries?
Yes. Cyber security skills are highly transferrable across sectors. The fundamentals of network security, threat detection, identity management and compliance apply across sport, finance, technology, government and beyond. Many professionals build a portfolio of cross-sector experience across their careers.
What is University Academy 92 and where is it based?
University Academy 92 (UA92) is a higher education institution based in Old Trafford, Manchester, co-founded by members of Manchester United’s Class of 92 and Lancaster University. UA92 offers degrees specifically designed around careers in the football and sport industry, alongside broader degrees including the Cyber Security BSc (Hons) and Computer Science BSc (Hons). Degrees are awarded by Lancaster University.
