Associate Data & Access Specialist (12 Months) - Flutter UKI, Hybrid

Associate Data & Access Specialist (12 Months) - Flutter UKI, Hybrid

Cyber Security Specialist (Entry Level)

Role overview:

The Associate Data & Access Governance Specialist sits within the Flutter International security team, reporting to the Senior Identity and Access Governance Manager.

The Associate Data & Access Governance Specialist is responsible to ensure Data and Access Security policies compliance for Flutter International. Engages with the business to facilitate application onboarding to existing IAM tools and ensures Data Security controls are incorporated into business processes.

The role will involve a mix of analysis of business systems in the context of Data and Access security, assessment of controls against Data and Access policies and driving improvements with business stakeholders.

Key Accountabilities & Responsibilities: 

• Help internal stakeholders understand the risk appetite for Data & Access Security and manage their products and data accordingly.
• Consult in the design, implementation and operation of business processes and services where Data is sensitive and/or high risk with guidance on Data & Access Security controls.

• Engage with business stakeholders to ensure the timely collection of the technical information required to onboard relevant applications into Flutter International Identity and Access Management tool – SailPoint.
• Ensure Flutter International sensitive data remains protected in line with GDPR, Policy and other compliance requirements across all Flutter International systems.
• Ensure low friction and efficient use of Data Loss Prevention controls to support the business.

• Support or manage the Data Loss Prevention controls and services across Flutter International, including Web, Email and Endpoint, alongside any new tooling.
• Recommend appropriate security controls and risk mitigation strategies for the entire data life cycle.

• Work with the System Owners to ensure their applications are onboarded to the access review process as defined by the Security Policies.
• Manage access review campaigns within SailPoint ensuring timely completion.
• Ensure user lifecycle events governance within the Identity and Access Management tool: joiner, mover, leaver.
• Drive continuous improvements to existing access governance processes
• Support the business with Data Loss Prevention incidents as per the agreed procedures

• Ability to engage and collaborate with various stakeholders within the business
• Excellent verbal and written communications skills with the ability to modify style to influence technical and business stake holders
• Good stakeholder management skills to drive improvement of data & access security controls
• This role requires SailPoint knowledge and experience
• A proactive team approach, who takes initiative to resolve problems.
• Delivery driven with a sensible attitude to risk 
• High level understanding of various IT processes and technologies (cloud, virtualization, databases, networking, software development, risk management)
• Proficient level of spoken and written English (B2, C1) (fluency in English is necessary)
• Good understanding of Data Loss Prevention and Identity & Access governance processes and tools
• Understanding of security processes and controls
• Knowledge and ease of working with security policies and standards
• Hands-on experience in either IT or security is desirable
• Passionate about technology and display energy and enthusiasm for the Data & Access Security discipline