Security Analyst (Based in Gibraltar - Relocation Package Included)

GVC Group ,
London, Greater London
Job Type: Full-time
Salary: £45,000 per annum

Overview

About The Role Our technology teams won’t settle for second place when it comes to keeping millions of customers up with the action. That’s why we give them the best resources to work with. Bring your focused expertise and drive to a business that will give you the freedom to innovate and explore. Join GVC and grab your opportunity to make things better for millions of sports betting and gaming customers worldwide. For the good of entertainment. Our portfolio of sports betting and gaming companies includes some of the most well-known brands in the industry, such as Ladbrokes, bwin, and Coral. We’ve a huge high street presence with an increasing share of online gaming activity. We take our commitment to safeguarding our customers extremely seriously. We make sure they know their limits and we work with them to make sure everyone enjoys our products and services responsibly. Purpose of Role: This role works closely with teams across the group to identify and handle security incidents, ensuring that relevant security attacks are timely detected, investigated and mitigated. In addition, it reviews the security risks that our organization faces, executing appropriate responses to ensure our security posture remains aligned with the needs of our dynamic organization. The role takes a hands-on approach to identify new risks on our current operations and develop the technical designs to mitigate them. Primary Responsibilities: • Monitor security events and identify potential incidents across the organization environments (Corporate, Production, Development) • Review alerts, assess risks and prioritize incident investigation efforts • Develop security tools and integrations to automate security operation processes • Interface to internal customers, gather functional requirements and design suitable security solutions aligned with business requirements • Interface with technical and business units to identify the source of the incidents and the appropriate resolution. • Identify "lessons learned" together with other organizational teams • Investigate security incidents. Produce accurate and timely reports on Information Security incidents so that mitigation measures can be effectively decided and implemented • Assist technical teams in gathering incident evidence and remediating issues • Prepare periodic reports on security monitoring and incident response • Operate and Tune security consoles configuration • Execute projects to implement the group Information Security Incident strategy • Conduct forensic analysis as required during the investigation of incidents • Support the fraud investigation teams on their incident investigations Occasional Responsibilities: • Respond to critical incidents on a 24x7 basis Knowledge/Expertise/Qualifications: The role requires a team player with strong technical foundations, hands-on information security skills, attention to detail and great problem solving skills. Essential: • At least two years’ experience in a similar Information Security position • Experience developing security tools and open source projects • Attention to detail and great problem solving skills • Outstanding knowledge of the technical foundations behind networking, operating systems and applications • TCP/IP • Linux • Windows • Web technologies • Other networking protocols • Good understanding of Information Security processes and theory • Vulnerability research and exploitation skills • Good communication skills and customer-facing experience • Experience in the following areas: • Vulnerability management • Risk management • Traffic and packet analysis Desired: • Security Certification (GIAC, OSCP, etc.) or similar qualification • Experience configuring and maintaining SIEM tools • Experience in creation of log correlation and incident detection rules • Experience managing security consoles and log correlation solutions • Online Gaming security experience • Experience in forensic analysis • Experience in security assessments • Experience securing Microsoft protocols • Regulatory and industry standards work: ISO27001, PCI-DSS, etc. Other relevant professional qualifications will be considered, although not a requirement, e.g. CISA, CISM, CISSP, GIAC, etc. With the capacity to display initiative as part of a very strong Information Security team, this position plays a key role in protecting the security of our customers and systems from known and unknown threats. Ready to bring it on? Bring your resilience to GVC and you can be bold. For the good of entertainment. Apply now