Technology and Cyber Risk Analyst - Risk Operations - Flutter UKI, Hybrid & Remote

Technology and Cyber Risk Analyst - Risk Operations - Flutter UKI, Hybrid & Remote

Cyber Security Analyst Mid 2

Role Overview:

As an Analyst - Risk Operations, you will support the UKI Regional Technical and Cyber Risk Team in delivering cyber risk management activities across PokerStars, Tombola, and PPB/SBG. You will bring enthusiasm, strong organisational skills, and a keen eye for detail to support the capture, documentation, and reporting of risks.

Working as part of a team reporting to the Head of Regional Technology and Cyber Risk, you will support the team in executing risk management activities. This is a varied role where no two days are the same, and you'll play an instrumental role in driving risk management excellence across multiple brands and functions.

Key Accountabilities & Responsibilities: 

Risk Data Management & Analysis

• Maintain and manage risk data repositories, ensuring accuracy, consistency, and integrity
• Develop and maintain risk registers and control registers with strong data governance
• Analyse risk data to identify trends, patterns, and emerging risks across regional brands
• Support the scoring and categorisation of risks using data-driven approaches
• Create data visualisations and dashboards that communicate risk insights effectively
• Support the development of risk metrics and KPIs for stakeholder reporting

Risk Reporting & Visualisation

• Design and develop risk reports, dashboards, and visualisations for stakeholder review
• Create compelling risk narratives supported by data analysis and insights
• Prepare trend analysis and forecasting reports on risk landscapes
• Support the preparation of executive summaries and risk heat maps
• Maintain audit trails and data documentation supporting risk assessments and analysis
• Identify data quality issues and recommend improvements

Data Tool Proficiency

• Develop and maintain complex Excel or PowerBI models for risk analysis
• Create automated reporting solutions using Excel or PowerBI
• Build data extraction and transformation processes to support risk reporting
• Develop dashboards and visualisations using available tools
• Support the integration of risk data from multiple sources
• Provide training and support to team members on data tools and best practices

Process Improvement & Automation

• Identify opportunities to automate risk management processes and reporting
• Support the development of risk management tooling and systems
• Help streamline data collection and reporting processes
• Contribute to the continuous improvement of risk management systems and data quality
• Support the implementation of new risk management frameworks and processes

Stakeholder Support & Communication

• Support stakeholder engagement activities with data-driven insights
• Communicate risk findings and analytics to technical and business stakeholders
• Escalate data quality issues and analytical findings to the Senior Analyst or Lead
• Build positive working relationships with technology stakeholders across regional brands
• Help stakeholders understand risk data and metrics

Cyber Risk & Compliance Knowledge Development

• Develop foundational knowledge of cyber risk frameworks (ISO 27001/2, NIST CSF, ISF SoGP, CIS, AWS CAF)
• Learn about risk metrics and KPIs in cyber risk management
• Develop understanding of industry standards, regulatory requirements, and cyber risk practices
• Develop understanding of gambling regulatory requirements and compliance metrics

Experience & Expertise

• Circa 1-2 years of experience within a Technology/Cyber, data analytics, or business intelligence environment
• Exposure to cyber risk, GRC, or compliance management (desirable)
• Advanced proficiency with Excel and PowerBI: pivot tables, complex formulas, data visualisation, macros, VBA
• Strong data analysis and problem-solving skills
• Experience with data management, data quality, and data governance
• Proficient with PowerPoint, SharePoint, and Confluence
• Experience with data visualisation tools (e.g., Tableau, Power BI) is desirable
• Ability to learn quickly and apply new concepts

Knowledge & Qualifications (Desirable)

• Any knowledge and experience of industry cyber frameworks such as ISO 27001/2, NIST CSF, ISF SoGP, CIS, AWS Cloud Adoption Framework (CAF)
• Knowledge of risk metrics and KPIs in cyber risk management
• Experience with SQL or Python for data analysis (desirable)
• Formal qualifications such as ISO 27001 auditor, CRISC, CCSP, CISA, or CISSP (desirable but not required)
• Experience working within a highly regulated industry
• Definite advantage: Experience in the online gambling industry and knowledge of gambling regulatory requirements

Behaviours & Attributes

• Problem Solver: You enjoy solving complex problems through data analysis and finding practical solutions
• Detail-Oriented: You have a keen eye for data quality and accuracy; you're meticulous in your work
• Analytical: You think analytically and can translate data into meaningful insights
• Team Player: You're willing to take on tasks and support colleagues; you're approachable and eager to help
• Communicator: You can communicate data insights clearly to both technical and non-technical audiences
• Collaborative: You work well in a team environment; you're willing to learn from colleagues
• Results-Driven: You have a desire to deliver quality outputs and contribute to team goals
• Growth-Minded: You're keen to develop your expertise in cyber risk management, data analytics, and GRC
• Culture Fit: You enjoy working in a dynamic, collaborative, transparent, non-hierarchical culture; you thrive in a fast-paced, outcome-driven environment