Information Security Analyst, Vulnerability Management

Company Description

At bet365, we're one of the world's leading online gambling companies, revolutionising the industry since 2000. Founded by Denise Coates CBE, we now employ over 9,000 people and serve over 100 million customers in 27 languages. Our focus on In-Play betting has solidified our market-leading position, offering an unmatched experience across 96 sports and 700,000 streaming events. With over 750 concurrent sporting fixtures at peak and more live sports streamed than anyone else in Europe, we handle over 6 billion HTTP requests daily and process more than 2 million bets per hour at peak.

We empower our employees to push boundaries and explore new ideas, cultivating a culture that celebrates and rewards creativity. This offers employees a wealth of opportunities for growth, giving them the opportunity to make a real impact in the world of online gambling. As a forward-thinking company, we’re breaking new ground in software innovation too, redefining what’s possible for our customers worldwide.

Job Description

As an Information Security Analyst, you will be working within our vulnerability management team, which focuses on the technical side of Information Security, ensuring IT systems are operated in a secure manner.

The Information Security department monitor our live operation, creating and reacting to alerts and other anomalies identified through automated tools or manual analysis.

The vulnerability management (VM) function covers two high-level areas, including owning the processes and schedules relating to the vulnerability scanning of all endpoints in the Business.

You will review the results in terms of risk and impact assessment, additionally you will own the scheduling of, and planning for specialist third-party vulnerability and penetration testing, in addition to the collation of reports.

Liaising with parts of the Business, will aid your understanding of the risk profile then advice on options to resolve any issues identified.

You will work closely with colleagues in the governance and compliance functions to ensure the Company meets its requirements on regulatory matters.

This role is eligible for inclusion in the Company’s hybrid working from home policy.

Qualifications

• Good understanding of the general principles, practices and technologies of Information and cyber security.
• Ability to demonstrate hands-on technical experience of conducting vulnerability scanning, evaluation of results and articulation of the risk vulnerabilities may pose.
• Experience of security related technical investigations.
• Working knowledge of industry standard information security practices.
• Knowledge of developments in security technologies and their applications.
• Awareness of PCI DSS at current version.
• Excellent communication and documentation skills, including a high attention to detail.
• Excellent organisational skills with the ability to work to deadlines.
• Pragmatic approach to the administration of governance and risk.
• Display a committed, flexible, can-do attitude towards work.

Additional Information

• Conducting vulnerability scanning with class leading tools.
• Scheduling of scanning across the entire Business ensuring reporting requirements are met whilst minimising operational impact to endpoints.
• Being able to articulate Business risk to both technical and non-technical colleagues.
• Scheduling internal and external resources and ensuring that targets are met.
• Working within the project process to ensure that the information security aspects are considered up front and throughout the project lifecycle.
• Liaising with the Business to ensure we remain compliant with all information security requirements within our operational jurisdictions.
• Acting as an escalation point where necessary.
• Creating technical documentation.
• Staying up to date with new and emerging threats, escalating any of interest to appropriate teams for further evaluation.
• Taking an active role in audits where necessary.

By applying to us you are agreeing to share your Personal Data in accordance with our Recruitment Privacy Notice - http://www.bet365careers.com/privacypolicy.pdf

At bet365, we're committed to creating an environment where everyone feels welcome, respected and valued. Where all individuals can grow and develop, regardless of their background. We're Never Ordinary, and we're always striving to be better. If you need any adjustments or accommodations to the recruitment process, at either application or interview, please don’t hesitate to reach out.