Senior Cyber Risk and Controls Manager - Flutter Functions, Hybrid & Remote

Senior Cyber Risk and Controls Manager - Flutter Functions, Hybrid & Remote

Lead Cyber Security Manager (M)

About Betfair Romania Development​: 

 

Betfair Romania Development is the largest technology hub of Flutter Entertainment, with over 2,000 people powering the world’s leading sports betting and iGaming brands. Exciting, immersive and safe experiences are delivered to over 18 million customers worldwide, from our office in Cluj-Napoca. Driven by relentless innovation and commitment to excellence, we operate our own unbeatable portfolio of diverse proprietary brands such as FanDuel, PokerStars, SportsBet, Betfair, Paddy Power, or Sky Betting & Gaming. 

 

Our Values: 

The values we share at Betfair Romania Development define what makes us unique as a team. They empower us by giving meaning to our contributions, and they ensure that we consistently strive for excellence in everything we do. We are looking for passionate individuals who align with our values and are committed to making a difference. 

Win together | Raise the bar | Got your back | Own it | Positive impact 

About Flutter Functions 

The Flutter Functions division is a key component of Flutter Entertainment, responsible for providing essential support and services across the organization. The division encompasses various corporate functions, including finance, legal, human resources, technology, and more, ensuring seamless operations and strategic alignment throughout the company.  

 

Role Overview: 

We are seeking a highly skilled and experienced Senior Cyber & Tech Risk and Controls Manager to join our Flutter Functions Cyber Security team The Senior Cyber & Tech Risk and Controls Manager is responsible for identifying and mitigating security and technology risks across the Flutter Function’s IT infrastructure and services. This role involves implementing and overseeing the continuous monitoring, assessment, and enhancement of security measures to protect data and systems from unauthorized access and threats.

Key Accountabilities & Responsibilities: 

• Oversee the development and implementation of the Flutter Function’s cyber and technology risk management strategy aligned with the Group Cyber Risk management framework and Enterprise Risk Management Framework.
• Lead efforts to identify, assess, and prioritize cyber and technology risks across Flutter Functions global platforms and enterprise services.
• Design and enforce comprehensive control frameworks to mitigate identified risks.
• Lead the annual NIST assessment schedule, including continuous monitoring and controls assurance where required.
• Coordinate with cross-functional teams to ensure alignment with security and technology policies and regulatory requirements.
• Work with cross-divisional teams on the annual policy and framework review cycle.
• Monitor and report on the effectiveness of risk management and control activities through KRIs and dashboards.
• Drive continuous improvement in cyber and technology risk and control processes through innovative solutions.
• Mentor and guide junior staff in cyber and technology risk management practices.

Skills, Capabilities & Experience Required: 

• Strong leadership and project management skills.
• Exceptional analytical and strategic thinking abilities.
• Proficient in risk assessment and management tools and methodologies.
• Excellent communication and presentation skills.
• Proven problem-solving skills and the ability to analyse complex challenges
• Ability to influence and collaborate with stakeholders at all levels.
• Enjoy and comfortable within both individual and team environments.
• Excels in fast-moving and dynamic environments.

Qualifications & Experience

• Bachelor’s degree in Cybersecurity, Information Technology, Business Administration, or a related field; Master’s degree preferred.
• Extensive experience in cyber and technology risk management, preferably in a senior role.
• Proven track record of designing and implementing risk management frameworks.
• Certifications such as CISSP, CISM, CRISC, or similar are highly desirable.
• In-depth knowledge of industry standards such as NIST CSF, ISO27001, ISO 22301, ISO 27031 or PCI-DSS is highly desirable.

Measure of Success

• Successful implementation of a robust cyber and technology risk management strategy across the organization.
• Reduction in the occurrence and impact of cyber incidents.
• High levels of compliance with security and technology policies and regulatory requirements.
• Enhanced organizational awareness and understanding of cyber and technology risks and controls.
• Development of a strong, capable team of cyber and technology risk management and controls assurance professionals

By meeting these performance criteria, the Senior Cyber & Tech Risk and Controls Manager will significantly contribute to the security and resilience of the organization’s platforms and services, while promoting continuous improvement and alignment with business objectives.

Benefits: 

• Hybrid & remote working options 

• €1,000 per year for self-development 

• Company share scheme 

• 25 days of annual leave per year 

• 20 days per year to work abroad 

• 5 personal days/year 

• Flexible benefits: travel, sports, hobbies 

• Extended health, dental and travel insurances 

• Customized well-being programmes 

• Career growth sessions 

• Thousands of online courses through Udemy 

• A variety of engaging office events                         

 

Disclaimer: 

 
We are an inclusive employer. By embracing diverse experiences and perspectives, we create a lasting, positive impact for our employees, customers, and the communities we’re part of. You don't have to meet all the requirements listed to apply for this role. If you need any adjustments to make this role work for you, let us know, and we’ll see how we can accommodate them.  

We thank all applicants for their interest; however, only the candidates who best meet the job requirements will be contacted for an interview. 

By submitting your application online, you agree that your details will be used to progress your application for employment. If your application is successful, your details will be used to administer your personnel record. If your application is unsuccessful, we will retain your details for a period no longer than three years, to consider you for prospective roles within the company.