Security Governance, Risk - Sunderland, United Kingdom - tombola

tombola
tombola
Verified Company
Sunderland, United Kingdom

4 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

Security GRC

Location:
Sunderland

Contract Type:
Permanent

Working Pattern:
Hybrid (2 days per week at home)

Due to continued success and growth of tombola we have a fantastic opportunity for you to join our compact but growing InfoSec team as an InfoSec Analyst focusing on GRC.

You will be working alongside a talented team who are super passionate about all things cyber security.

We have a professional approach to the task in hand and all bring complimentary skills to the table whether that be from an operational security, offensive security, governance, risk or compliance angle.


What will you do?

We are looking for a bright, innovative and enthusiastic person who is passionate about building on existing governance, risk, and compliance capabilities.

This is a key role taking responsibility for communicating and delivering an effective technical compliance framework throughout tombola, ensuring that we can maintain a suitable security posture whilst retaining our competitive edge.

This position will work closely with compliance, technology teams and the wider business in order to support a tech risk framework used to manage and mitigate security and technology risks across tombola's tech group while continuing to enhance the security culture throughout tombola utilising engaging security awareness campaigns over multiple channels.


Your responsibilities will be

  • Maintain and continuously improve ISO27001/2 aligned InfoSec ISMS, policies, standards, and processes.
  • Evolve InfoSec governance metrics and KPI capabilities for tombola tech group and wider group stakeholders.
  • Contribute to ensuring tombola technology platforms meet all tech compliance requirements coming from the online gambling regulators.
  • Work in collaboration with tombola regulatory compliance team and key stakeholders within tech group.

About you - past experience

  • Knowledge of security and tech compliance requirements within preferably the gambling or highly regulated industry.
  • Analytical and problemsolving skills to identify and assess technology and securitybased risks this includes performing risk assessments and designing risk treatment plans.
  • Knowledge of governance standards and frameworks such as ISO27001/2, PCI-DSS, ISF, NIST, GDPR.
  • Desirable professional qualifications CISA, CRISC etc.


  • Personal qualities

  • Passionate about your chosen career path, you'll be collaborating with people that love what they do therefore, you should too.
  • Strong communicator comfortable collaborating with both technical and player focused colleagues.
  • Confidence to suggest improvements. We're constantly looking to improve the way we do things. From managing our workloads, to the way we deliver information security across tombola. We have an open attitude to innovative ideas. If you don't like the way something is done all we ask is that you suggest a better way of doing it.
  • Selfstarter and able to work in a fastpaced environment offering ideas and insights.

Benefits
We know that having a happy team is key to creating the feel-good factor that helps us be the best we can be as a business, so we offer a competitive range of benefits:

  • Company Quarterly bonus
  • Flexible working (2days per week at home)
  • Dedicated desk in the office
  • Private Healthcare
  • Free breakfast, lunch & barista coffee
  • Pension
  • Core hours for a better work life balance
  • Continuous learning & development
  • Onsite free gym
  • 25 days holiday + bank holidays which increases with length of service, as well as the option to buy holidays

To check out all our benefits, please visit our benefits & perks** page.


Job Types:
Full-time, Permanent
More jobs from tombola
See all jobs of tombola