Senior Security Engineer - Flutter Functions, Hybrid

Senior Security Engineer - Flutter Functions, Hybrid

Cyber Security Senior Engineer 1

About Betfair Romania Development​:

Betfair Romania Development is the largest technology hub of Flutter Entertainment, with over 2,000 people powering the world’s leading sports betting and iGaming brands. Exciting, immersive and safe experiences are delivered to over 18 million customers worldwide, from our office in Cluj-Napoca. Driven by relentless innovation and commitment to excellence, we operate our own unbeatable portfolio of diverse proprietary brands such as FanDuel, PokerStars, SportsBet, Betfair, Paddy Power, or Sky Betting & Gaming.

Our Values:

The values we share at Betfair Romania Development define what makes us unique as a team. They empower us by giving meaning to our contributions, and they ensure that we consistently strive for excellence in everything we do. We are looking for passionate individuals who align with our values and are committed to making a difference.

Win together | Raise the bar | Got your back | Own it | Positive impact

About Flutter Functions:

The Flutter Functions division is a key component of Flutter Entertainment, responsible for providing essential support and services across the organization. The division encompasses various corporate functions, including finance, legal, human resources, technology, and more, ensuring seamless operations and strategic alignment throughout the company.  

Role Overview:

Flutter Technology are recruiting a Senior Security Engineer who will support the Lead Security Engineer in shaping, driving improvement and implementing Flutter’s cybersecurity program. This role includes review and updating existing high-level designs, along with interpreting these high-level designs into practical technical/low(er) level designs and either implementing them directly or overseeing the implementation.
Candidates must have significant experience in understanding the risks and related controls for cloud services, DevSecOps, migration and automation (both automation of security processes, and security _of_ automation processes). They must be comfortable working with cross-functional global teams in dynamic organisations, as the role will have interdependencies with teams in AWS, our partners, and our internal engineering teams across various functions in various brands across Flutter globally.
The ideal candidate will have experience working with enterprise organisations on large-scale migration/modernisation transformation projects, with a strong emphasis on cybersecurity. This role demands a customer-centric and collaborative approach, a deep technical understanding of cloud security solutions, and a passion for transforming business using cloud technologies.

Key Accountabilities & Responsibilities:

• Play a key role building and operating a secure Security Services environment and AWS Cloud Platform.
• Act as subject matter expert on DevSecOps and secure automation.
• Support engineering teams with the adoption of cloud security services.
• Triage incidents, problems, and risks impacting Flutter’s cloud services from a security perspective.
• Support cloud architecture and function leads with developing the cybersecurity technology roadmap and strategy.
• Drive the adoption of standard operating procedures, policies, and runbooks for cybersecurity. Facilitate the development and communication of Flutter Group standards for design, development, and deployment.
• Liaise with other group functions, building and maintaining relationships, and recognising opportunities for strategic collaboration.
• Liaise with Third Party vendors and partners.
• On-call is likely to be introduced in the future.

Skills & Capabilities Required:

• Building Support: We establish close relationships with our stakeholders, underpinned by trust, integrity, and respect. We are able to build awareness, understanding, and positive momentum behind the group technology strategy, often without being in a position to assert authority.
• Objective: We are impartial and unbiased, ensuring equal treatment for all and that decisions are based on objective criteria.
• Collaborative: We work effectively and in partnership with our stakeholders on shared goals that align towards the achievement of the group strategy. We foster a collaborative environment and assume the role of leader when required.
• Adaptable: We understand and appreciate different and opposing perspectives on an issue and are able to adapt our approach in order to achieve a successful outcome.
• Strategic Thinking: We think about the big picture and use that perspective to support our divisions to achieve competitive advantage through greater agility, faster time to market and a better customer experience.
• Strategic Communication: We are proactive and considered in our approach to stakeholder communications. We actively listen, provide constructive feedback and help others to consider new perspectives.

Experience Required:

• Building and operating Infrastructure and Cloud platforms, ideally within AWS environments, incorporating cloud security measures, automation, infrastructure as code, and DevSecOps.
• Experience with OKTA for secure identity management.
• Experience / awareness of infrastructure as code using CDK, Terraform, CloudFormation.
• Knowledge of threat and vulnerability management.
• Delivering systems in security compliant environments.
• Writing and maintaining technical documentation.
• Sharing knowledge across the wider security community.
• Working with source control management (Git, GitHub) and CI/CD Pipelines.
• Working in an agile environment.
• Incident, change, problem, and risk management.
• Bonus points for previous software engineering experience, coding, and automation.

Benefits:

• Hybrid & remote working options
• €1,000 per year for self-development
• Company share scheme
• 25 days of annual leave per year
• 20 days per year to work abroad
• 5 personal days/year
• Flexible benefits: travel, sports, hobbies
• Extended health, dental and travel insurances
• Customized well-being programmes
• Career growth sessions
• Thousands of online courses through Udemy
• A variety of engaging office events                        

Disclaimer:

We are an inclusive employer. By embracing diverse experiences and perspectives, we create a lasting, positive impact for our employees, customers, and the communities we’re part of. You don't have to meet all the requirements listed to apply for this role. If you need any adjustments to make this role work for you, let us know, and we’ll see how we can accommodate them.

We thank all applicants for their interest; however, only the candidates who best meet the job requirements will be contacted for an interview.

By submitting your application online, you agree that your details will be used to progress your application for employment. If your application is successful, your details will be used to administer your personnel record. If your application is unsuccessful, we will retain your details for a period no longer than three years, to consider you for prospective roles within the company.