Associate Business Information Security Officer - Flutter UKI, Hybrid
This position is open across multiple Flutter UK & Ireland office locations. The benefits and package will be in line with the entity in your location. Your Talent Partner will discuss this in further detail.
We're looking for a passionate and driven Associate Business Information Security Officer to join our InfoSec Tribe, part of Flutter UK & Ireland.
Introducing Information Security
We're the Tribe that provides practical, effective security guidance, frameworks and services to support the whole of the business. We are responsible for ensuring the company has solutions in place to protect Flutter UK & Ireland, our colleagues and customers. We obsess about supporting and collaborating across the division to deliver solutions with security "baked in".
Whether it's providing clarity and insight into operational security concerns for senior management or working knee deep with engineers to overcome technical challenges, we provide information security services and guidance to enable those at all levels to make decisions that help ensure that as a business we deliver robust and secure services for our customers.
What you'll do
Our Associate BISO's are passionate about information security delivery and work collaboratively with our InfoSec Tribe colleagues, as well as being the "go to" person for our diverse Product and Technical Tribes across Flutter UK & Ireland. The Associate BISO is the focal point of our infosec relationship, ensuring effective engagement with all our Information Security process, policies, and procedures.
How you'll do it
* Has an awareness of various compliance standards, regulatory bodies and local laws relating to information security.
* Is familiar with the concept of risk appetite & the requirements of Flutter UKI's Policy framework.
* Understands and speaks the language of our business. Has learned to effectively communicate with both technical and non-technical staff by learning to translate security concepts into plain English and presents them in a way that decision-makers can understand.
* Understands security technologies and how they can protect our organization's assets.
* Supports tribes to achieve their goals without compromising security by working closely with leadership, product owners, architects, developers, engineers, and service managers to build security into every delivery.
* Builds strong and trusted relationships with the tribes they support.
* Enables delivery within the tribe they support by understanding their priorities, timelines & being clear on what is need upfront to perform their security assessment at pace.
* Can identify and document security risks.
Skills you will use
* Strong inter-personnel, analytical & communication skills and experience of working directly with both technical and non-technical stakeholders.
* Previous experience of working in an agile environment that uses matrix management across squads/tribes to deliver solutions.
* Experience of working with third party suppliers and business partners to deliver services.
* A personal drive to use data, metrics and analysis to support service delivery and technical/ business strategy development.
* Knowledge of IT risk and security frameworks and standards e.g. ISO27001, PCI, NIST, SOX, ISF, etc. and key security GDPR privacy requirements.
* Ability to identify key issues, provide appropriate MI and communicate operational status and risks to stakeholders, leveraging colleagues as needed.
* Passion for maintaining technology awareness across a wide spectrum; Networks, security technologies, Cloud, infrastructure and platforms, automated software pipelines, etc.
#J-18808-Ljbffr