GRC Security Expert

Company Description

Founded in 1999, the company has a premium listing on the Main Market of the London Stock Exchange and is focused on regulated and regulating markets across its B2B and B2C businesses. Both divisions leverage Playtech’s proprietary technology to deliver innovative products and services to ensure a safe, engaging and entertaining betting and gaming experience. Playtech is the gambling industry's leading technology company delivering business intelligence-driven gambling software, services, content, and platform technology across the industry's most popular product verticals, including, casino, live casino, sports betting, bingo and poker. Read more about who we are and what we do here: www.playtech.com & www.playtechpeople.com

Here at Playtech, we genuinely believe that people are our biggest asset. Diverse thoughts, experiences, and individual characteristics enrich our work environment and lead to better business decisions. Recognizing differences and ensuring our processes are transparent is the core of Playtech’s overall commitment to responsible business practices.

Playtech's Governance Risk and Compliance team is looking for a GRC Security Expert with excellent communication and problem-solving skills.

Job Description

Your influential mission. You will...

• Define, establish and implement organizational information security processes, to ensure business, regulatory, legislative and contractual requirements and obligations are met.
• Manage the internal and external ISMS audit processes, monitor effectiveness of controls and corrective actions in cooperation with the stakeholders across the organization.
• Manage gap analysis, compliance readiness, and compliance monitoring activities for ISO/IEC 27001, PCI DSS and other regulatory security audits.
• Coordinate external security audits, assessments and testing as well as remediation plans development and implementation.
• Identify, assess and monitor information security risks and recommend mitigation measures.
• Develop content, coordinate and facilitate a comprehensive organizational information security awareness training program.
• Manage security requirements with third parties, including due diligence of products and services providers and information security requirements clauses in service provision agreements and contracts.
• Develop, coordinate and maintain information security policies, procedures and other security related documents.
• Analyze, map and communicate information security requirements, that derive from legislative and regulatory obligations in various jurisdictions.
• Serve as project manager/lead within security projects.
• Continually improve and update knowledge to accommodate changes to the company’s regulatory environment and needs.