Overview
Do you have an interest in cyber security with a keen eye for detail? Do you want to join a vibrant team that’s developing fast? We’re looking for a Cyber Security Analyst for GRC, known internally as Governance, Risk & Compliance (GRC) Analyst to join our friendly and expanding team here at tombola. You’ll work with a group of security minded professionals who bring complementary skills to the table, within a wider Information Security Team comprised of operational and offensive security teams. We take a professional approach to our work, but at tombola we also know how to have fun. You’ll form part of a team responsible for communicating and delivering an effective technical compliance framework, that means ensuring that we maintain a suitable security posture while balancing the need to remain nimble and competitive. You’ll work closely with compliance, technology teams, and the wider business to manage and mitigate security and technology risks.
Your responsibilities will include maintaining and improving our ISMS, policies, standards, and processes. You’ll lead audits working with external test houses to maintain our technical operating licenses and work with Group compliance teams to ensuring that our technology platforms and game offerings meet all technical compliance requirements from local and international gambling regulators.
Responsibilities
* Maintain and improve ISMS, policies, standards, and processes.
* Lead audits with external test houses to maintain technical operating licenses.
* Collaborate with Group compliance teams to ensure technology platforms and game offerings meet technical compliance requirements from local and international gambling regulators.
* Communicate and deliver an effective technical compliance framework to balance security with agility and competitiveness.
* Work closely with compliance, technology teams, and the wider business to manage and mitigate security and technology risks.
Qualifications
* Technically competent – Strong technical background and knowledge of security frameworks (NIST, ISO27001, PCI-DSS).
* Sound problem solving skills – Analytical with a practical approach.
* Risk awareness – Ability to identify and assess technology and security-based risks.
* A team player – Proficient and adaptable, able to work well with others and be approachable.
* Excellent communicator – Comfortable presenting and speaking to varying audiences; able to interact with stakeholders across the business and with external partners.
* Confident – Willing to ask difficult questions, suggest improvements, and challenge the status quo.
* Organised – Able to plan and manage multiple projects.
* Creative – Able to articulate technical information and security awareness in an engaging way.
* Flexible – Adaptable to a rapidly changing environment; balance security with operational needs.
* Passionate about a career path in a growing industry with a down-to-earth attitude and a can-do approach.
Next steps
If you’re a self-starter who can work in a fast-paced environment, welcome innovative ideas and insights, and are interested in improving how we do things, we’d love to hear from you. Apply now to join our talented InfoSec Team at tombola!
#J-18808-Ljbffr