At a Glance
- Tasks: Manage compliance programmes and support audits for Flutter UKI's security governance.
- Company: Join a leading gaming company with a focus on innovation and teamwork.
- Benefits: Flexible hybrid work, competitive pay, and opportunities for professional growth.
- Other info: Great chance to develop your career in a supportive and collaborative culture.
- Why this job: Be part of a dynamic team ensuring security and compliance in a fast-paced environment.
- Qualifications: Knowledge of compliance frameworks and strong project management skills required.
This position is open across multiple Flutter UK & Ireland office locations. The benefits and package will be in line with the entity in your location. Your Talent Partner will discuss this in further detail.
An exciting opportunity has opened up for a Security Governance and Assurance Analyst to join the team, initially as a 6-Month Fixed-Term Contract covering maternity leave. The role reports into the Senior Governance & Assurance Manager – UKI, and the Security Governance and Assurance Analyst will be responsible for the day-to-day delivery of the tech workstream for Flutter UKI’s audits and assessments.
What you'll do:
- Responsible for day-to-day delivery of some of Flutter UKI's external compliance programmes, which may include ISO 27001, PCI DSS and SOX.
- Responsible for facilitation of some of our other second and third line audits e.g. NIST CSF 2.0, Internal Audit, UKI Risk & Assurance assessments.
- Assisting the ISMS & Policy Manager as required with the ISO 27001 audits and the creation, annual review cycle, withdrawal of policies and standards.
- Understands the UKI Tech & Infosec principles and supports the team in delivering on these.
How you'll do it:
- Solid understanding of regulatory compliance frameworks such as Sarbanes-Oxley, PCI DSS, ISO27001, NIST CSF 2.0, GDPR.
- Experienced in successfully delivering and facilitating multiple projects / pieces of work simultaneously, re-prioritising as appropriate to meet deadlines with a pragmatic approach.
- Well versed in risk management and has a sound understanding of how controls are implemented in line with business risk appetite & regulatory need.
- Can demonstrate the communication of complex technical matters to both tech/non-tech audiences, both internally and externally (auditors).
- Can easily navigate internal/external audit & compliance engagements, along with supporting controls testing & evidencing requirements.
- Ability to identify key issues & can communicate them to stakeholders leveraging colleagues as needed to find solutions.
- Understand the people & cultural aspects to information security.
- Assertive, results orientated and good attention to detail.
Competencies Required:
- Hungry for Results: Achieves results at pace with energy and drive; consistently achieves and exceeds expectations; takes accountability and always delivers on what has been promised; action orientated, agile in approach, calls out when things go wrong; sets stretch goals and holds self and others to high standards of performance; demonstrates rigour and commitment to activities; always acts with integrity and invests in building trust with all stakeholders.
- Wins Together: Is a team player- by working collaboratively is able to establish and engage networks to achieve shared objectives; acting as a key support whenever possible; effectively communicates and shares information to ensure others are fully informed; praises others for their contributions and accomplishments; gains trust and support of others.
- Resilient: Maintains excellent composure and professionalism even in very difficult situations; confident under pressure, handles and manages crises effectively; bounces back from setbacks and acts as a role model for others; maintains a positive attitude despite adversity; skilfully handles challenges and obstacles applying insights from others and lessons learned from mistakes.
- Game changer: Remains curious and generates new and useful ideas or solutions to solve challenges; is open to innovations and gets involved in unfamiliar tasks or new areas; learns new methods, tools and technologies and applies them to work.
- Nimble: Quickly understands and adapts well to new and unfamiliar situations or challenges; consistently performs experiments to find the best solution; learns from others' experiences and shares lessons learned from own mistakes; is transparent about failure and views mistakes as opportunities to learn.
- Quality decision maker: Considers all relevant factors and uses appropriate decision-making criteria and principles; takes smart, independent action in urgent and unusual situations; collaborates effectively to speed up decision making and clearly understands when to elevate to others; shares ideas and applies insights from experienced team members on how to address new situations; comfortable giving opinions and takes decisive action; strives for excellence.
- Effective communicator: Is effective in a variety of communication settings; one-on-one, F2F, virtual meetings, small and large groups, or among diverse styles; actively listens to others and takes opinions and ideas on board; demonstrates humility in their dealings with others; provides timely and helpful information to others across the organisation.
Security Governance & Assurance Analyst - Flutter UKI, Hybrid (Fixed-term, 6 months) employer: CM001 Hestview
At Flutter UKI, we pride ourselves on being an exceptional employer that fosters a dynamic and inclusive work culture. Our hybrid working model allows for flexibility while providing comprehensive benefits tailored to your location, alongside ample opportunities for professional growth and development. Join us to be part of a collaborative team that values innovation and resilience, ensuring you thrive in your role as a Security Governance & Assurance Analyst.
StudySmarter Expert Advice🤫
We think this is how you could land Security Governance & Assurance Analyst - Flutter UKI, Hybrid (Fixed-term, 6 months)
✨Get Engaged in Cybersecurity Communities
Dive into online forums or local meetups, like OWASP events or Cybersecurity conferences. These spaces are packed with pros who can share insights and might even know about temporary roles at places like CM001 Hestview.
✨Showcase Your Skills Publicly
Link your GitHub or create a series of blogs sharing your knowledge on cybersecurity topics. It’s a great way to demonstrate your expertise and attract attention from hiring managers, especially when they see your passion in action.
✨Stay On Top of Temp Opportunities
Keep an eye on platforms that list temporary positions specifically in tech. Websites focusing on contract roles in cybersecurity can lead straight to employers like CM001 Hestview.
✨Make Contact with Recruiters Specialising in Cybersecurity
Reach out to recruitment agencies that focus on cybersecurity roles. They often have insights into temporary roles before they’re advertised and can put your name forward to companies like CM001 Hestview.
We think you need these skills to ace Security Governance & Assurance Analyst - Flutter UKI, Hybrid (Fixed-term, 6 months)
Some tips for your application 🫡
Show Off Your Technical Skills:In cybersecurity, it's vital to highlight your skills with relevant tools and technologies. Make sure your CV showcases your experience with firewalls, intrusion detection systems, and any cybersecurity frameworks you've worked with. This gives CM001 Hestview a clear view of your capabilities right off the bat.
Certifications Matter:If you’ve got any cybersecurity certifications, like CompTIA Security+ or CISSP, flaunt them! These not only validate your skills but also show that you’re committed to the field. Add a section to your CV specifically for this, because in a temporary role like this, those credentials can really set you apart.
Tailor Your Cover Letter to the Role:For a temporary position, we want to see your willingness to learn and adapt quickly. Make your cover letter specific to the role at CM001 Hestview; mention why you’re excited about the opportunity and how it fits your career goals. A personal touch can make a big difference!
Don’t Forget the Soft Skills:In cybersecurity, technical skills are crucial, but so are soft skills like teamwork and communication. Make sure to weave examples of how you've collaborated with teams or communicated complex ideas into your application. This shows that you're not just a tech whizz but also a great team player, perfect for a temporary role at CM001 Hestview.
How to prepare for a job interview at CM001 Hestview
✨Brush Up on Technical Skills
Make sure you’re familiar with the latest cybersecurity tools and techniques, like firewalls, intrusion detection systems, and malware analysis. During the interview with CM001 Hestview for the Security Governance & Assurance Analyst - Flutter UKI, Hybrid (Fixed-term, 6 months), be prepared to discuss specific scenarios where you tackled security threats or vulnerabilities.
✨Show Your Problem-Solving Prowess
Cybersecurity is all about thinking on your feet. Expect technical questions that require you to demonstrate your problem-solving abilities. You might be presented with a mock security breach scenario, so practising your responses to potential threats can be a game changer!
✨Demonstrate Your Adaptability
As this is a temporary role, showing that you're adaptable and quick to learn is crucial. Talk about times you've picked up new skills or reacted to changing situations quickly. Employers want to know you can hit the ground running and keep things secure during your short stay at CM001 Hestview.
✨Bring Relevant Certifications
If you have any relevant cybersecurity certifications, like CompTIA Security+ or CEH, be sure to mention them. This can really help you stand out during a temporary hiring process, as it showcases your commitment to the field and your readiness to take on the Security Governance & Assurance Analyst - Flutter UKI, Hybrid (Fixed-term, 6 months) role at CM001 Hestview.
