Cyber Security Engineer

At the heart of everything we do is our vision to change lives every day and our mission to grow The National Lottery responsibly and champion its impact.

We are Allwyn UK part of the Allwyn Entertainment Group a multi-national lottery operator with a market-leading presence acrossthe USA (Michigan and Illinois) andEurope includingCzech Republic Austria GreeceCyprusand Italy.

While the main contribution of The National Lottery to society is through the funds togood causes at Allwynwe put our purpose and values at the heart of everything we us as we embark on a once-in-a-lifetime largescale transformation journey by creating a National Lottery that delivers more money togood causes.

Welltalk a bit more about us further down the page but for now letstalk about the role and whowerelooking for

A bit about the role

This role will be key to our approach to Cyber Defence at Allwyn managing the toolsets processes and capabilities required to effectively deliver a world class security operations Centre. Responsibilities will include managing security engineering toolset.

The role will be focused on developing and maintaining the technology and capabilities we have deployed.

You will be joining an exciting and growing area and will be instrumental in supporting and advancing the operational security capabilities of the Cyber Security Team. There will be opportunity to work on and establish new Security Projects as well as provide an advisory role to other elements of the business on best practice.

The role will require establishing relationships with key stakeholders in Risk Technology and Operations as well as establishing yourself as a SME for cyber security within the organisation.

Whatyoullbe doing

Advanced and Predictive Analytics

Run advanced and predictive analyses and perform assessments based on the Mitre ATT&CK framework. Will also be required to do validation and enhancement activities using predictive analytics software tools and functionalities as well as the correlating testing activities to ensure quality of the use cases. Correlation monitoring using multiple SIEM technologies will be required to ensure that the SOC achieves its objective of being a threat led organisation. Will be required to gather forensic data and physical equipment to perform forensic investigation when necessary. You will be required to act as incident responder for potential incidents identified and where necessary lead the incident responder.

Data and Analytics Strategy

Works independently and provides guidance and training to others on analysing data trends for use in security use cases to guide the development of the Security toolset. Improve data and analytics systems and platforms contribute and continuously improve and refine the data and analytics security strategy. Conduct security assessments regularly to identify vulnerabilities and performing risk analysis. Analyse breaches to reach the root cause. Generate reports for IT administrators business managers and security leaders. These reports serve as an input to evaluate the efficacy of the security controls. Perform forensic analysis and gather evidence for correlation monitoring using multiple SIEM technologies.

Security Improvement through AI

Create artificial intelligence algorithms that identify potential patterns or indicators of compromise in security logs to be used in the defense of the environment. Ensure the proactive development of all new machine learning activities are in alignment to identified threats by using your extensive knowledge of the threat landscape.

Cloud Security

Have expert knowledge of both Aws an Azure security controls and be able to design implement and maintain all security controls required by the business including knowledge of but not limited to (Azure AIP;Defender;Azure AD;key vaults;log shipping ect AWS Guard duty; security hub;trusted advisor;config;cloudtrail;cloudwatch;inspector ect)

Be the subject matter expert on all Azure security tooling.

Implementation and design of required security measures such as firewalls or message encryption.

Planning and Organizing

Uses comprehensive knowledge and skills to work independently while providing guidance and training to others on planning organizing prioritizing and managing activities to efficiently meet business objectives. Lead on updating Protective Monitoring/SOC documentation processes and procedures and ensure consistency.

What experiencewerelooking for

Key Skills and Experience:

Ability to work under pressure

Have 1-3 years experience in a similar role

In-depth understanding of the cyber threat landscape and advances adversary tactics

The role requires an expert knowledge and experience of Linux; Windows; Azure; AWS; Sentinel;Paulo Alto and Cyberark.

Threat Modelling and Mitre Att&ck.

In-depth knowledge of a scripting language preferably python

Desirable Skills:

Previous experience in a similar role

Relevant Cloud experience

About us

At Allwyn we are dedicated to changing lives and growing the National Lottery responsibly championing its positive impact on people places and the planet.

• Innovation -We pride ourselves on it!Wereconstantly looking for new ways to excite our customers bringing new products to market toenjoywhich is all supported by our responsible play values and making them accessible to all.

• Giving back Did you know that playing the lottery generates around 30m a week for charities andgood causesin the UK Our aim is to have doubled this number by the end of the first 10-year license.

• Sustainability Our aim is to become a net zero national lottery. We have 2030 targets to decarbonise our operations and transitioned to renewable energy providers made our London and Watford offices zero gas and ensured our fleet consists of low-emission additionwereworking with our value chain partners to develop a net zero target date.

• Empowering every voice We believe in creating a culture where everyone feels they belong can be themselves has access to opportunities and can thrive for the benefit of good diverse teams are working hard to make all parts of The National Lottery inclusive whether people play a game in a store or onlinebecause when everyone can play everyonewins..

An inclusive reward offering with wellbeing at the centre

At Allwyn inclusion is built into how we care for our people. Our benefits and policies support colleaguesand their familiesat every stage of life and career. By prioritising wellbeing and belonging we create a workplace where everyone feels valued rewarded and empowered to people are more than colleagues -theyrewinners driving positive change and making a real difference in communities.

Benefits

• CompanyBonusScheme

• Matched pension contributions up to 8.5%

• 26 days annual leave 2 Life Days (and bank holidays)

• Single Private Health Cover

• Complimentary Private Medical

• Income Protection

• Flexible Benefits EV SchemeMoney Coach Will WritingMortgage AdviceDental and Eye Care Schemes.

• EnhancedFamily Leave (MaternityPaternity Adoption)

• WellnessAllowance500

• Employee AssistanceProgramme

• Discounted Health Assessments

• Volunteering Days

• Matched Funding

We are a Disability Confident Leader which meanswevetaken proactive steps to ensure our workplace is accessible and inclusive for disabled and neurodivergent colleagues and candidates. As part of this we offer an interview to disabled applicants who meet the essential requirements of the job.

If you need anyassistanceor adjustments to this job description or in the application process please contact a member of the talent team atandwellbe happy to help.

Required Experience:

IC