Description
About Betfair Romania Development:
Betfair Romania Development is the largest technology hub of Flutter Entertainment, with over 2,000 people powering the world’s leading sports betting and iGaming brands. Exciting, immersive and safe experiences are delivered to over 18 million customers worldwide, from our office in Cluj-Napoca. Driven by relentless innovation and commitment to excellence, we operate our own unbeatable portfolio of diverse proprietary brands such as FanDuel, PokerStars, SportsBet, Betfair, Paddy Power, or Sky Betting & Gaming.
Our Values:
The values we share at Betfair Romania Development define what makes us unique as a team. They empower us by giving meaning to our contributions, and they ensure that we consistently strive for excellence in everything we do. We are looking for passionate individuals who align with our values and are committed to making a difference.
Win together | Raise the bar | Got your back | Own it | Positive impact
About Flutter Functions:
The Flutter Functions division is a key component of Flutter Entertainment, responsible for providing essential support and services across the organization. The division encompasses various corporate functions, including finance, legal, human resources, technology, and more, ensuring seamless operations and strategic alignment throughout the company.
Role Overview:
Flutter Global Cyber is seeking an IAM Solutions Architect to contribute to the design, development and implementation of IAM capabilities across the Flutter ecosystem. IAM at Flutter is going through a period of change, with a new group-wide strategy being agreed and a technical roadmap for uplifting the services to support the strategy in development.
The successful candidate will have a background with IAM, either in security architecture or security engineering, or through end user computing delivery. They will work with a variety of stakeholders – including brand security and engineering teams, workplace technology, vendor technical account managers and technical consultancies – in supporting the delivery of the strategy.
The successful candidate will have a proven track record of working on enterprise-scale IAM or C-IAM projects, in engineering or architecture roles. The candidate will be able to design and document secure and scalable solutions across IAM which are tailored to the individual brands’ needs.
Key Accountabilities & Responsibilities:
Support the IAM architectural roadmap, working with security and enterprise architecture to maintain alignment to the broader enterprise security and technology strategies.
Design end-to-end IAM solutions covering identity governance and administration (IGA), privileged access management (PAM) and access management.
Establish and maintain architecture patterns, standards, and reference designs for IAM across cloud, hybrid, and on-premises environments.
Architect and oversee the implementation of authentication protocols including OAuth 2.0, OpenID Connect (OIDC), SAML 2.0, and FIDO2/WebAuthn.
Drive the adoption of multi-factor authentication (MFA), single sign-on (SSO), and password-less authentication capabilities, enhancing and extending the conditional access implementation.
Collaborate with peer functions such as Workplace Technology, Enterprise Architecture, Security Architecture as and when required.
Engage with relevant teams to ensure IAM solutions comply with relevant regulatory and control frameworks (including GDPR, SOX, PCI-DSS, NIST and ISO 27001).
Support the analysis & delivery of role-based access control (RBAC), attribute-based access control (ABAC), and entitlement management frameworks.
Support audit and assurance activities, producing architectural documentation and evidence as required.
Act as the subject matter expert (SME) for IAM solutions, advising stakeholders and product teams on identity-related risks, capabilities and mitigations.
Bring a “customer first” mindset to ensure that user experience remains a priority in the delivery of IAM services.
Evaluate and support recommendations for IAM vendor solutions and tooling, contributing to procurement and commercial decisions.
Act as a coach or mentor to junior colleagues to further IAM within Flutter
Skills, Capabilities & Experience Required:
An understanding of federation protocols: SAML 2.0, OAuth 2.0, OIDC, SCIM, LDAP, Kerberos.
Strong understanding of zero trust network access (ZTNA) and its application to identity architectures.
Experience designing IAM solutions across multi-cloud environments (AWS, Azure, GCP).
An understanding of API security patterns, including OAuth token management and API gateway integration.
Familiarity with Infrastructure as Code (IaC) tooling (e.g., Terraform, Ansible) as applied to identity configuration.
An understanding of PKI, certificate lifecycle management, and secrets management best practices.
Architecture experience - ideally with a grounding in a recognised framework such as TOGAF, SABSA, or Zachman.
Demonstrable experience working within complex, large-scale enterprise environments with diverse technology stacks.
Strong understanding of cloud-native architecture patterns, microservices, and containerisation (Kubernetes, Docker).
Degree in Computer Science, Information Security, or a related discipline - or equivalent demonstrable experience.
7+ years in identity and access management or information security roles, with at least 3 years in an architectural or engineering capacity.
Relevant professional certifications such as:
Certified Information Systems Security Professional (CISSP)
The Open Group Architecture Framework (TOGAF)
Experience in regulated industries (financial services, gaming, healthcare).
Strategic thinking - ability to connect IAM decisions to broader business and security outcomes.
Communication - capable of conveying complex technical concepts clearly to both technical and non-technical audiences.
Ownership - takes accountability for architectural decisions and their outcomes.
Collaboration - builds effective working relationships across security, engineering, product, and compliance teams.
Continuous learning – curiosity to remain current within the rapidly evolving identity governance and threat landscape ecosystem.
Benefits:
Hybrid & remote working options
€1,000 per year for self-development
Company share scheme
25 days of annual leave per year
20 days per year to work abroad
5 personal days/year
Flexible benefits: travel, sports, hobbies
Extended health, dental and travel insurances
Customized well-being programmes
Career growth sessions
Thousands of online courses through Udemy
A variety of engaging office events
Disclaimer:
We are an inclusive employer. By embracing diverse experiences and perspectives, we create a lasting, positive impact for our employees, customers, and the communities we’re part of. You don't have to meet all the requirements listed to apply for this role. If you need any adjustments to make this role work for you, let us know, and we’ll see how we can accommodate them.
We thank all applicants for their interest; however, only the candidates who best meet the job requirements will be contacted for an interview.
By submitting your application online, you agree that your details will be used to progress your application for employment. If your application is successful, your details will be used to administer your personnel record. If your application is unsuccessful, we will retain your details for a period no longer than three years, to consider you for prospective roles within the company.
