FanDuel Group is an innovative sports-tech entertainment company that is changing the way consumers engage with their favorite sports, teams, and leagues. The premier gaming destination in the United States, FanDuel Group consists of a portfolio of leading brands across gaming, sports betting, daily fantasy sports, advance-deposit wagering, and TV/media, including FanDuel, Betfair US, and TVG. FanDuel Group has a presence across 45 states and 8 million customers. The company is based in New York with offices in California, New Jersey, Florida, Oregon, and Scotland.
SUMMARY OF THE ROLE -
Reporting to the CTO, VP Technology for Cyber Security is accountable for security excellence across product, infrastructure, workplace and end user computing through security assurance, policies, processes, risk management, technical compliance, data security, cyber threat management and security operations.
You will take a collaborative and pragmatic approach, leading a small team of security professionals, working with your peers and stakeholders within FanDuel Group as well as the wider Flutter organization to define the security strategy to achieve the most appropriate balance between security, pace of delivery and ease of use across our product and technology state, protecting our customers and employees data without compromising their experience.
In this role you will serve as primary point of contact for the Flutter Internal Audit and Risk functions as well as the Flutter Global Cyber Security team.
ESSENTIAL DUTIES AND RESPONSIBILITIES -
Drive the FanDuel Group global strategy for IT security, risk and compliance through evangelization and education of cyber security services by communicating the vision and value.
Design, implement and maintain policies, procedures and controls necessary to ensure and protect the safety and security of all information system assets within the organization, including prevention of intentional or inadvertent access, modification, disclosure, or destruction.
Partner with IT and Engineering professionals to implement solutions to satisfy security objectives across our consumer-facing product estate, workplaces and end user computing environments
Manage and conduct independent risk assessments, vulnerability scans and penetration testing against our technology infrastructure, establishing key metrics and partnering with technology teams to ensure appropriate plans in place to address gaps
Drive our technology risk management and compliance process across all locations and product verticals including PCI and regulatory compliance
Monitor, gather and report on IT Security related incidents and provide regular activity reports.
Work with internal audit and risk functions to identify, plan and implement remediations to continuously improve our security maturity
Lead a team of security professionals to achieve the security strategy, attracting and retaining the best talent
REQUIRED QUALIFICATIONS AND ABILITIES -
One or more certifications in the security field, for example CISSP, CISM, CCISO
Subject Matter Expert in conducting cyber security risk assessments against technology infrastructure
Expertise with delivering security solutions following standards-based frameworks such as ISO 27000 series, NIST, COBIT or SANS with clearly defined controls and processes
Experience in highly regulated environment such as finance, online gaming or healthcare and compliance assessment frameworks such as PCI, HIPAA, NIST, GLBA and SOX
Expertise in public cloud (such as AWS, GCP, Azure), private cloud (VMWare, OpenStack) and physical data center environments across Windows and Linux operating systems, computer networking, routing, switching, firewalls
Experience in security concepts related to DNS, routing, authentication, VPN and DDOS mitigation technologies
WHAT YOU GET IN RETURN
Beyond working with such a great team?
An exciting environment with real growth
Contribute to exciting products used by a highly passionate user base
Personal learning and development opportunities
Flexible vacation allowance
Attractive health insurance premiums