Entain is one of the world’s largest sports betting and gaming groups, operating both online and in the retail sector. With offices across five continents and licences in more than 20 countries, we operate some of the most well-known and iconic brands in the industry with more than 250 years of combined history – names such as Ladbrokes, partypoker, bwin and Coral.
This role works closely with teams across the group to identify and handle security incidents, ensuring that relevant security attacks are timely detected, investigated and mitigated. In addition, it reviews the security risks that our organization faces, executing appropriate responses to ensure our security posture remains aligned with the needs of our dynamic organization.
The role takes a hands-on approach to identify new risks on our current operations and develop the technical designs to mitigate them.
With the capacity to display initiative as part of a very strong Information Security team, this position plays a key role in protecting the security of our customers and systems from known and unknown threats.
Primary Responsibilities:
- Monitor security events and identify potential incidents across the organization environments (Corporate, Production, Development)
- Review alerts, assess risks and prioritize incident investigation efforts
- Develop security tools and integrations to automate security operation processes
- Interface to internal customers, gather functional requirements and design suitable security solutions aligned with business requirements
- Interface with technical and business units to identify the source of the incidents and the appropriate resolution.
- Identify “lessons learned” together with other organizational teams
- Investigate security incidents. Produce accurate and timely reports on Information Security incidents so that mitigation measures can be effectively decided and implemented
- Assist technical teams in gathering incident evidence and remediating issues
- Prepare periodic reports on security monitoring and incident response
- Operate and Tune security consoles configuration
- Execute projects to implement the group Information Security Incident strategy
- Conduct forensic analysis as required during the investigation of incidents
- Support the fraud investigation teams on their incident investigations
Occasional Responsibilities:
- Respond to critical incidents on a 24x7 basis
Knowledge/Expertise/Qualifications:
The role requires a team player with strong technical foundations, hands-on information security skills, attention to detail and great problem solving skills.
Essential
- At least two years’ experience in a similar Information Security position
- Experience developing security tools and open source projects
- Attention to detail and great problem solving skills
- Outstanding knowledge of the technical foundations behind networking, operating systems and applications: TCP/IP, Linux, Windows, Web technologies, other networking protocols
- Good understanding of Information Security processes and theory
- Vulnerability research and exploitation skills
- Good communication skills and customer-facing experience
- Experience in the following areas: Vulnerability management, Risk management, Traffic and packet analysis
Desired
- Security Certification (GIAC, OSCP, etc.) or similar qualification
- Experience configuring and maintaining SIEM tools
- Experience in creation of log correlation and incident detection rules
- Experience managing security consoles and log correlation solutions
- Online Gaming security experience
- Experience in forensic analysis
- Experience in security assessments
- Experience securing Microsoft protocols
- Regulatory and industry standards work: ISO27001, PCI-DSS, etc.
Other relevant professional qualifications will be considered, although not a requirement, e.g. CISA, CISM, CISSP, GIAC, etc.