Director, Threat Detection & Response

THE POSITION
Our roster has an opening with your name on it

FanDuel is looking for a Director of Threat Detection & Response who sits at the intersection of deep engineering expertise and executive-level leadership. Youll own the teams and programs responsible for keeping FanDuels platforms data and customers safe and youll build the operational maturity to scale with one of the fastest-growing companies in sports gaming.

This is a highly visible senior leadership role spanning four critical security domains: Security Operations Engineering Detection Engineering Threat Intelligence and Vulnerability Management. Youll define strategy lead high-performing teams and partner cross-functionally with Product Fraud and Customer Operations to translate risk signals into clear decisive action.

Were looking for someone who came up through the technical ranks who has built detection systems run incident response and understands what makes security engineering excellent and who is now equally effective advising executives and operating at board-room scale. If youre energized by ownership ambiguity and building something that truly matters this is your role.

In addition to the specific responsibilities outlined above employees may be required to perform other such duties as assigned by the Company. This ensures operational flexibility and allows the Company to meet evolving business needs.

THE GAME PLAN
Everyone on our team has a part to play

Four pillars. One mission: detect respond and reduce risk with precision.

• Security Operations Engineering The operational backbone. Youll lead the team responsible for real-time monitoring alert triage incident response and the tooling that keeps our security posture sharp and responsive 24/7.
• Detection Engineering The engineering discipline at the core of how we find threats. Your team designs builds and continuously improves detection logic SIEM content behavioral analytics and automated response workflows grounded in threat intelligence and adversary emulation.
• Threat Intelligence The signal that drives everything else. Youll build and mature a threat intelligence capability that feeds detection informs response and gives FanDuel early visibility into adversaries TTPs and emerging risks most relevant to our business and customers.
• Vulnerability Management A growing capability youll help shape. Youll work closely with partner teams to bring engineering rigor and strategic coherence to how FanDuel identifies prioritizes and reduces exposure building the connective tissue between threat intelligence detection and risk reduction at scale.
• Lead and scale high-performing teams across Security Operations Engineering Detection Engineering Threat Intelligence and Vulnerability Management including senior managers and staff-level ICs.
• Define and drive a unified security operations strategy that aligns detection response intelligence and risk reduction into a coherent outcome-driven program.
• Build and mature engineering-led capabilities: SIEM/SOAR platforms detection-as-code practices behavioral analytics threat intel pipelines and automated response playbooks.
• Apply adversary-centric frameworks MITRE ATT&CK threat modeling adversary emulation to continuously evolve coverage reduce dwell time and improve detection fidelity.
• Partner closely with Fraud Product and Customer Operations to align on shared threat surfaces incident response coordination and risk signal sharing across the business.
• Develop and mentor senior managers and ICs; build a culture of technical excellence psychological safety and clear accountability.
• Communicate operational risk security posture and program outcomes to executive leadership with precision translating signals into decisions not noise.
• Define and deliver OKRs anchored in engineering output and risk reduction: detection coverage expansion automation containment rates signal precision and detection-as-code deployment velocity not analyst throughput or ticket volume.
• Champion an AI-first approach to security operations integrating automation ML-driven detection and intelligent triage to compound the teams impact without linearly compounding headcount.
• Drive continuous improvement in process tooling coverage and incident readiness including post-incident reviews that produce measurable program changes not just documentation.
• Evaluate and evolve the security tooling stack partnering with vendors and internal engineering teams to ensure capabilities keep pace with the threat landscape and support a code-first operating model.

THE STATS
What were looking for in our next teammate

• We care about what youve built and what youve changed not just how long youve been doing it.
• Youve built and scaled security operations functions in fast-paced product-driven environments and have the outcomes and metrics to show for it.
• Youve led multi-functional security organizations including managers and senior ICs and you know how to cultivate high performance without burning people out.
• You have real engineering depth in at least one of these domains: detection engineering security automation SIEM/SOAR platforms or threat intelligence and you can credibly engage with your teams at a technical level.
• Youve led response to serious security incidents and your teams come out of them better than they went in with improved playbooks tooling and process to prove it.
• Youre a strong cross-functional operator who knows how to partner with engineering product and fraud teams to move at the speed a consumer business requires.
• You turn ambiguity into structure youve built programs and frameworks where none existed and youve made them stick across a complex organization.
• You communicate risk in a way that moves people clear confident and grounded in data whether youre in a post-incident review or presenting to the C-suite.
• Background in regulated or consumer-facing industries fintech gaming e-commerce or similar where speed and trust are equally non-negotiable.
• Experience building cloud-native detection and security engineering capabilities at scale (AWS GCP or Azure environments).
• Familiarity with adversary simulation red team operations or offensive security methodologies even without direct program ownership.
• Prior ownership of threat intelligence programs or vulnerability management at an organization with a broad complex attack surface.
• A track record of redefining how security effectiveness is measured with program health framed around engineering throughput automation coverage and risk reduction rather than analyst activity.
• Experience applying AI ML or large-scale automation to detection and response whether building models integrating intelligent tooling or rearchitecting how the team triages and contains threats.
• Experience in high-growth or startup environments where youve had to build capability faster than the threat landscape moves.
  
  

ABOUT FANDUEL

FanDuel Group is the premier mobile gaming company in the United States and Canada. FanDuel Group consists of a portfolio of leading brands across mobile wagering including: Americas #1 Sportsbook FanDuel Sportsbook; its leading iGaming platform FanDuel Casino; the industrys unquestioned leader in horse racing and advance-deposit wagering FanDuel Racing; and its daily fantasy sports product.

In addition FanDuel Group operates FanDuel TV its broadly distributed linear cable television network and FanDuel TV its leading direct-to-consumer OTT platform. FanDuel Group has a presence across all 50 states Canada and Puerto Rico.

The company is based in New York with US offices in Los Angeles Atlanta and Jersey City as well as global offices in Canada and Scotland. The companys affiliates have offices worldwide including in Ireland Portugal Romania and Australia.

FanDuel Group is a subsidiary of Flutter Entertainment the worlds largest sports betting and gaming operator with a portfolio of globally recognized brands and traded on the New York Stock Exchange (NYSE: FLUT).

PLAYER BENEFITS
We treat our team right

We offer amazing benefits above and beyond the basics. We have an array of health plans to choose from (some as low as $0 per paycheck) that include programs for fertility and family planning mental health support and fitness benefits. We offer generous paid time off (PTO & sick leave) annual bonus and long-term incentive opportunities (based on performance) 401k with up to a 5% match commuter benefits pet insurance and more - check out all our benefits here:FanDuel Total Rewards. *Benefits differ across location role and level.

FanDuel is an equal opportunities employer and we believe as one of our principles states We are One Team!. As such we are committed to equal employment opportunity regardless of race color ethnicity ancestry religion creed sex national origin sexual orientation age citizenship status marital status disability gender identity gender expression veteran status or any other characteristic protected by state local or federal law. We believe FanDuel is strongest and best able to compete if all employees feel valued respected and included.

The applicable salary range for this position is $228000 - $299250 USD which is dependent on a variety of factors including relevant experience location business needs and market demand. This role may offer the following benefits: medical vision and dental insurance; life insurance; disability insurance; a 401(k) matching program; among other employee benefits. This role may also be eligible for short-term or long-term incentive compensation including but not limited to cash bonuses and stock program participation. This role includes paid personal time off and 14 paid company holidays. FanDuel offers paid sick time in accordance with all applicable state and federal laws.

FanDuel is committed to providing reasonable accommodations for qualified individuals with disabilities. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process including support for the interview or onboarding process please email.

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

#LI-Hybrid