Director of Cyber Governance, Risk and Compliance
Share
Job Location:
Monthly Salary:
Posted on:
9 hours ago
Vacancies:
1 Vacancy
Job Summary
Role Purpose
The Director of Cyber Governance Risk and Compliance (GRC) is a senior leadership role reporting to the Global CISO responsible for developing implementing and overseeing comprehensive cybersecurity governance risk management and compliance programs across Flutter. This position requires strategic thinking deep technical expertise and the ability to translate complex cyber risks into business language for executive leadership and stakeholders. The role will be critical in completing our transition across Futter Group to the NIST CSF 2.0 industry standard working with all levels of the organization to quantify measure and manage risk and cyber maturity across Flutter brands.
Accountabilities & Responsibilities
Strategic Leadership & Governance
- Lead a team of security GRC professionals driving a culture of continuous improvement data-driven measurement and reporting and proactive risk management
- Establish and maintain cybersecurity governance structures policies and procedures that set the boundaries and parameters for Flutters cyber control environment
- Provide strategic guidance to executive leadership on cyber risk posture and investment priorities based on data-led controls assurance
Risk Management
- Design and oversee enterprise cyber risk assessment methodologies and frameworks
- Develop curate and maintain risk appetite statements and tolerance thresholds in collaboration with Flutter brands
- Manage global third-party risk assessment service to oversee cybersecurity supply-chain risks for the group
- Support brands in their risk management and controls assurance activities as required
Controls Assurance and GRC Engineering
- Lead a team of controls assurance analysts in collating and maintaining a continuous view of our cyber control health throughout the group
- Lead a team of GRC Engineers tasked with creative problem-solving including continuous controls monitoring and independent assurance
- Drive the use of AI in the cyber GRC space to reduce the burden of assurance across the Group
Stakeholder Management
- Engage with internal and external stakeholders including senior leadership to provide strategic insights and influence decision-making around security matters
- Represent the organization in discussions with regulators auditors and third-party vendors regarding security posture
- Prepare materials for the board and support the Global CISO and Director of Transformation & Operations with any board-related matters & regulatory requests
- Influence and work with brand-based colleagues to achieve collective objectives and drive best practice across Cyber GRC
- Build and maintain effective relationships with other compliance functions including Group Risk Group Legal Group Data Protection Group Internal Audit and their divisional counterparts
Skills & Capabilities
Cybersecurity Expertise:
- Deep understanding of cybersecurity frameworks (NIST CSF ISO 27001 CIS SANS COBIT)
- Understanding and knowledge of modern Cyber GRC practices
Leadership & People Management:
- Proven experience leading and mentoring cross-functional teams with a focus on fostering a culture of security excellence.
- Strong influencing and communication skills able to effectively interact with senior executives and technical teams alike.
Risk Management:
- Expertise in identifying assessing and mitigating cybersecurity risks across digital platforms.
- Ability to prioritize security initiatives based on business impact and risk appetite.
- Knowledge and understanding of commercial regulatory and more general business risks
Problem-Solving & Analytical Thinking:
- Strong analytical skills with the ability to quickly identify and solve complex security GRC challenges.
- Ability to think strategically and leverage data and information to support decision-making
Project Management:
- Skilled in managing complex projects with a focus on security initiatives.
- Ability to oversee multiple projects simultaneously ensuring timely delivery and alignment with business objectives.
Qualifications & Experience
- Bachelors or Masters degree in Cybersecurity Information Technology Computer Science or a related field
- Relevant certifications (e.g. CISSP CISM CISA AWS Certified Security Specialty or similar) are highly desirable.
- Minimum of 10 years of experience in cybersecurity with at least 5 years in a leadership role
- Extensive experience in leading security strategy risk management controls assurance and other GRC related competencies
- Proven track record in working with senior leadership and external stakeholders to influence security outcomes.
- Familiarity with the gambling or financial services industry is a plus but not required.
Whats in it for you
We are a flexible employer; whether you have personal commitments or a hobby that brings you joy we want you to bring your best self to work and feel empowered to do so. We also like to share our success; after all you make it happen. We have an excellent benefits package that can be personalised to you:
- Bonus scheme
- Uncapped holiday allowance
- Enhanced pension scheme
- Private healthcare
- Life assurance
- Income protection
- 1000 annual self-development learning fund
- Invest via the Flutters Sharesave Scheme
- Enhanced parental leave
About Flutter
We are a world leader in online sports betting and iGaming with a market leading position in the US and across the world.
We have an unparalleled portfolio of the most innovative diverse and distinctive brands including FanDuel Sky Betting & Gaming Sportsbet PokerStars Paddy Power Sisal tombola Betfair MaxBet Junglee Games and Adjarabet.
With our global scale and challenger attitude through which we excite and entertain our customers in a safe and sustainable way. Using our collective power the Flutter Edge we aim to disrupt the sector learning from the past to create a better future for our customers colleagues and communities.
Were working to be an inclusive employer and we encourage people from all backgrounds ways of thinking and working to apply. Everyone brings different perspectives and experiences; you dont have to meet all the requirements listed to apply for this role.
If you need any adjustments to make this role work for you let us know and well see how we can accommodate them.
Required Experience:
Director
Key Skills
- Crisis Management
- Marketing
- Public Relations
- Fundraising
- Media Relations
- Constant Contact
- Strategic Planning
- Social Media Management
- Team Management
- Public Speaking
- Wordpress
- Writing Skills
About Company
Singular is an award-winning iGaming software provider that gives you a freedom to be your own brand. Our portfolio includes an all-in-one iGaming Platform and Sports Betting Platform as well as products for casino and betting retail operations.
