Skip to main content
DSC 5924 2000X1335

SecOps Divisional Tech Lead - Flutter UK&I

  • Cluj-Napoca, Cluj, Romania
  • Full time 40 hours
  • Permanent
  • Flutter UK&I

SecOps Divisional Tech Lead (for Flutter International)

Reporting to the Manger Divisional Integration & Engineering, the Divisional Tech Lead helps to ensure the security operations function is prepared to detect and respond to security events.

The SecOps Divisional Tech Lead works with their team to integrate Flutter divisions with the Security Operations function and tooling.  They will design and build technical integration to SIEM, SOAR and other platforms, help to develop processes and reporting to measure operations effectiveness and take a lead on technical troubleshooting and divisional incident support.

The Divisional Tech Lead will become the subject matter expert on an assigned division, building a detailed knowledge of the environments, infrastructure, applications used and taking a lead on ensuring that knowledge is used to enhance the development of detection use cases and add context during incident response.

Your Responsibilities

  • Design solutions and processes for the integration of Flutter brands/divisions to UKI SecOps services.
  • Implement the integration of Flutter brands/divisions to UKI SecOps tooling.
  • Become an SME on an assigned division, learning it’s operations, environments, and infrastructure.
  • Build detection use cases in SIEM or playbooks in SOAR.
  • Contribute to the standardisation of detection engineering, incident investigation and incident response processes for all onboarded brands/divisions.
  • Build reporting capability in SIEM / SOAR that creates a clear understanding of SecOps activity, workload and alignment with SLAs.  Brief stakeholders on operations activity periodically.
  • Contribute to the continued development of threat hunting framework to be utilised across all onboarded divisions and conduct threat hunts.
  • Identify opportunities to better utilise threat intelligence to improve detection capability and work with other engineering teams to implement them.
  • Contribute to the standardisation processes governing the onboarding of new monitoring and the service agreements used to onboard activity and run security operations.
  • Contribute to the continued growth of the team through knowledge sharing.
  • Assist with audit preparation and management for security operations.
  • Act as an escalation point for incidents and security operations tooling support as part of an on-call rota.

You are someone that:

  • Knows you can’t succeed on your own and works hard to build great relationships and collaboration within and across teams.
  • Never ducks responsibility or hides from things because they are difficult.  When you see something that needs attention you take action.
  • Speaks your mind but measures the communication style and delivery.  You are never afraid to share unbiased, honest, pragmatic, solution-oriented input. You help and encourage others to do likewise.
  • Constantly delivers to a high standard in everything you do, encouraging others to do the same through example.

Key Skills Required

  • Demonstrable experience of security operations in fast pace large scale environments.
  • Good understanding and experience with SIEM, SOAR and Mitre Att&ck.
  • Good understanding and experience with IDS/IPS, EDR and other security tooling.
  • Good understanding of threats, threat actor behaviours and threat analysis skills.
  • Excellent verbal and writing communications skills with the ability to modify style to influence and effectively work directly with both technical and non-technical stakeholders.

What you can expect:

  • An open and collaborative team who value and respect each other;
  • An autonomous environment where you are empowered to make decisions;
  • 25 days of annual leave;
  • Share save scheme and „Flexible Benefits” of your choice;
  • Private health insurance (includes dental insurance and health assessments);
  • Excellent development opportunities including online and in-house training, access to thousands of courses online through ‘Udemy'.

Ways of working:

Flexible working is our way of working! We're a diverse workforce and therefore a 'one size fits all' approach isn't necessarily best. Whatever your personal needs may be, let's have a chat and see how we can accommodate them;

We thank all applicants for their interest, however only the suitable candidates will be contacted for an interview. By submitting your application online, you agree that: your details will be used to progress your application for employment. If your application is successful, your details will be used to administer your personnel record. If your application is unsuccessful, we will retain your details for a period no longer than two years, in order to consider you for prospective Paddy Power Betfair role.

Join our community

Be the first to know about our latest vacancies

Sign up