Senior Cyber GRC Controls Assurance Analyst

Blip is a leading tech company focused on software engineering solutions for sports entertainment.

We operate at scale. As part of Flutter Entertainment, we play an essential role in the Group's goal of becoming the global leader in online sports betting and iGaming, developing innovative products and platforms for over 14 million monthly customers worldwide.

We are serious about Tech. We are problem-solvers with big ambitions, keeping a people-first mindset at the core of our work. We prioritize flexibility as we strive to deliver the best technological products and tackle the greatest industry challenges.

Recognizing that everyone brings their own strengths, backgrounds and new perspectives, we empower you to be yourself. That uniqueness shapes the culture of belonging we are so proud of.

The Role

As a Senior Cyber GRC Controls Assurance Analyst reporting to the Senior Cyber GRC Controls Assurance Manager, you will play a key role in shaping the Flutter Cyber Security Assurance Program capability to provide second line oversight and ensure that our cyber and security and technology controls are protecting us against cyber security and tech risk across all businesses within the group.

What You’ll Be Doing

• Using a defined assurance framework, perform assessments of the design and operational effectiveness of our technology and cyber security controls.
• Maintain accurate records of testing activity which can stand up to scrutiny, document the findings uncovered during the control assessment activities, support the control owners to plan remediation activities and track their progress.
• Identify unmanaged risks using the data from assurance assessments and provide recommendations and guidance on cyber security controls to the divisions.
• Building and maintaining relationships with all our businesses to become knowledgeable of their cyber security risks and controls.
• The value of your work will be used by multiple stakeholders, both at group level (e.g. Enterprise Risk, Internal Audit) but also within divisions (e.g. Directors of Security, CTOs, process and control owners).
• Use large amounts of data to build reports and insights
• Support the configuration of the tools used by the team, ensuring that they remain operational and are utilized effectively to support the assurance and reporting processes.
• Monitor emerging threats, regulatory changes, and industry standards to identify and propose enhancements to Flutter’s cyber risk posture and control environment.
• Partner with GRC teams across the group to ensure a unified and consistent controls assurance approach.
• Build strong relationships with cyber, technology, and business stakeholders to ensure controls assurance activities are embedded and effective.
• Maintain deep awareness of divisional risk profiles, control environments, and operating models.
• Promote a controls assurance-aware culture through thought leadership and practical engagement.

What You’ll Bring

• Minimum 5 years’ experience in information security.
• Good understanding of cyber security risk and controls
• Knowledge of security related technologies and industry standard security processes across all risk areas; previous experience with security controls in AWS environments is a plus
• Data-oriented, capable of determining what process and control outputs are relevant for specific risk areas and what good should look like
• Strong on data analysis (and tools such as excel and PowerBI), with a keen eye for detail
• An inquisitive, disciplined and logical thinker who possesses strong investigative and analytical qualities that will translate into creating and deploying assessment techniques that will provide a comprehensive view of cyber security risk based on complex data sets
• Results-oriented with the ability to influence outcomes with pragmatic recommendations and guidance
• Awareness of current IT Security standards such as NIST, ISO 27001, PCI DSS, NIST, ISF certifications such as CISA, ISO 27001 auditor, PCI QSA, CIA are a plus

• Awareness of the 3 lines of defence model, roles of second line/assurance functions and internal audit

• Able to adapt communication style and to appreciate different and opposing perspectives across multiple divisions  
• Excellent verbal and written communications skills with a flexible attitude and the ability to meet deadlines under pressure
• Strong English language abilities, capable of effective communication both orally and in writing

We'd Like You To Master In 

• Influential and Trustworthy: Builds strong, trust-based relationships with stakeholders across the business.
• Objective: Approaches challenges with neutrality and fairness, ensuring consistent, evidence-based decisions.
• Collaborative: Works seamlessly with cross-functional teams to deliver on shared objectives and business outcomes.
• Adaptable: Navigates diverse perspectives with flexibility to reach optimal outcomes.
• Strategic Thinking: Maintains a forward-looking mindset aligned with Flutter’s broader technology and business goals.
• Effective Communication: Proactively engages stakeholders, communicates with purpose, and helps influence change through insight and clarity.

This is what you should have. What do we have, you ask? Well...you can check our amazing perks & benefits  right  here !  

So ... are you in?  
 Equal opportunities  

At Blip, we are committed to creating a diverse and inclusive workplace. We strongly encourage people from all backgrounds, ways of thinking, and working to apply.  
We are committed to including everyone regardless of their race, disability, age, gender identity, sexual orientation, and religion.  
Everyone brings different perspectives and experiences; you don’t have to meet all the requirements listed to apply for this role.  

If you need any adjustments to apply for the position and to ensure this role aligns with your needs, please send an email to  accommodations@blip.pt . 

We will only respond to inquiries related to disabilities.