Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the charge in defining and evolving product security strategies across Flutter's global brands.
- Company: Join Flutter Entertainment, a leader in online sports betting and iGaming.
- Benefits: Enjoy flexible working, uncapped holiday, private healthcare, and a £1,000 learning fund.
- Why this job: Make a real impact on security practices while collaborating with innovative teams.
- Qualifications: Experience in software development and application security, with leadership skills.
- Other info: Be part of a diverse team that values inclusion and personal growth.
The predicted salary is between 48000 - 84000 £ per year.
Overview
Join to apply for the Product Security Architect role at Flutter Entertainment.
Location – Leeds/Dublin. Hybrid – 2 days per week.
Flutter is seeking a Senior Product Security Architect to define and evolve a group-wide Product Security strategy across all regions and brands. This role provides strategic guidance, technical direction, and hands-on expertise to help security and engineering teams embed security into product development lifecycles in a federated environment. The role is the key advisor on AppSec standards, secure development practices, threat modelling, and security tooling (SAST, DAST, SCA, IaC scanning, container security, etc.), ensuring consistency and maturity in how applications are built and maintained.
Overall, the Senior Product Security Architect combines technical expertise with strategic vision and leadership to drive Flutter’s brands toward an advanced security posture that protects assets, meets compliance obligations, and enables business objectives.
About Flutter
Flutter consists of two commercial divisions (FanDuel and International) and our central Flutter Functions; COO, Finance & Legal. We work to deliver the Flutter Edge, differentiating our brands through Product, Tech, Expertise and Scale. We cover Product & Payments, Technology, Sportsbook Product & Trading, People, Property, Corporate Communications and Strategic Partnerships & Transformation.
What You’ll Do
- Strategic Leadership & Roadmap: Define and lead the enterprise-wide Application Security and SDLC strategy, with short, mid, and long-term goals aligned with security posture and digital transformation. Develop AppSec maturity models (e.g. OWASP SAMM, NIST SSDF, BSIMM) and work with business units to assess current state and define improvement plans. Drive the development of a global secure development policy, including approved tools, practices, and coding standards.
- Technology & Tooling Strategy: Evaluate, recommend, and support the rollout of AppSec tools (SAST, DAST, SCA, container and IaC scanners, runtime protections, CI/CD integrations). Collaborate with platform and DevOps teams to integrate tools into developer workflows and provide architecture guidance on secure design patterns in cloud-native and hybrid environments.
- Global Collaboration: Align strategies with the Associate Director of Group Enterprise Security and other domain leads. Define and monitor AppSec KPIs and metrics (e.g., vulnerability MTTR, scan coverage, risk acceptance trends) and report to leadership. Coordinate secure architecture reviews for critical initiatives and provide threat modelling support for large cross-brand projects.
- Continuous Improvement & Innovation: Stay current on emerging AppSec technologies and best practices. Evaluate new tools and features, reduce friction for developers while maintaining security, and improve program maturity across brands. Plan for product-related incident response and disaster recovery readiness.
- Project and Vendor Management: Oversee Secure by Design projects, manage vendor relationships, and ensure services align with group policies. Evaluate and select products or upgrades consistent with the strategic roadmap and ensure configurations meet requirements.
How You’ll Do It
- Several years of experience in software development and application security, with recent AppSec leadership or Security Architecture experience.
- Proven track record designing and implementing enterprise-scale secure development programs and embedding security into engineering culture.
- Broad experience integrating with tools such as SonarCloud, Checkmarx, GitHub Advanced Security, Snyk, Aqua, Prisma Cloud, Semgrep, etc.
- Strong understanding of CI/CD ecosystems (e.g., GitLab, Jenkins, Azure DevOps, GitHub Actions) and how to embed security into build and deploy processes.
- Experience in regulated industries or large enterprises is highly desirable. Mergers and Acquisitions integration experience is a plus.
- Familiarity with OWASP SAMM, OWASP ASVS, BSIMM, NIST SSDF, ISO 27034.
- Ability to lead teams and projects (DevSecOps lead, security architect, or SSDLC manager).
- Professional security certifications are valued (e.g., CISSP, CSSLP, CISM, and/or other AppSec certifications).
What’s In It For You
We are a flexible employer and offer a benefits package that can be personalised. We also celebrate success and provide opportunities for growth:
- Bonus scheme
- Uncapped holiday allowance
- Enhanced pension scheme
- Private healthcare
- Life assurance
- Income protection
- £1,000 annual self-development learning fund
- Flutter Sharesave Scheme
- Enhanced parental leave
About Flutter
We are a world leader in online sports betting and iGaming with a market-leading position in the US and globally. Our brands include FanDuel, Sky Betting & Gaming, Sportsbet, PokerStars, Paddy Power, Sisal, tombola, Betfair, MaxBet, Junglee Games and Adjarabet. We aim to be an inclusive employer and welcome applicants from diverse backgrounds. If you need adjustments to make this role work for you, please let us know so we can accommodate them.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Entertainment Providers
#J-18808-Ljbffr
Product Security Architect employer: Flutter entertainment
Contact Detail:
Flutter entertainment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Product Security Architect
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Prepare for interviews by researching Flutter and its brands. Understand their security posture and be ready to discuss how your experience aligns with their needs. Tailor your answers to show you’re the perfect fit for their team.
✨Tip Number 3
Showcase your skills through practical examples. Bring up specific projects where you’ve implemented security measures or improved processes. This will help you stand out and demonstrate your hands-on expertise.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining the Flutter family.
We think you need these skills to ace Product Security Architect
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the skills and experiences that align with the Product Security Architect role. Highlight your experience in application security, secure development practices, and any relevant tools you've worked with.
Craft a Compelling Cover Letter: Use your cover letter to tell us why you're passionate about security and how your background makes you a great fit for Flutter. Be specific about your achievements and how they relate to the responsibilities outlined in the job description.
Showcase Your Technical Skills: Don’t shy away from listing your technical expertise! Mention the AppSec tools and CI/CD ecosystems you’re familiar with, as well as any certifications you hold. This will help us see your fit for the role at a glance.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands and shows us you’re serious about joining the Flutter team!
How to prepare for a job interview at Flutter entertainment
✨Know Your Stuff
Make sure you brush up on your knowledge of application security standards and frameworks like OWASP SAMM and NIST SSDF. Be ready to discuss how you've implemented these in past roles, as Flutter will be looking for someone who can define and lead their AppSec strategy.
✨Showcase Your Leadership Skills
Prepare examples that highlight your experience in leading teams and projects. Flutter wants a Senior Product Security Architect who can drive security initiatives across various brands, so demonstrate your ability to align strategies and collaborate effectively with different stakeholders.
✨Familiarise Yourself with Tools
Get comfortable with the AppSec tools mentioned in the job description, such as Snyk, Checkmarx, and GitHub Advanced Security. Be ready to discuss how you've integrated these tools into CI/CD pipelines and how they can enhance security in product development.
✨Think Strategically
Flutter is looking for someone who can not only implement security measures but also think long-term about security posture and digital transformation. Prepare to talk about how you would develop a global secure development policy and assess current states to define improvement plans.
