Information Security Specialist
Position Ref: ISS117BW
February 9, 2018
bet365, one of the world’s leading online gambling companies, is seeking candidates to fill the role of Information Security Specialist. There is an option for the position to be based at either our Staffordshire or Manchester offices.
Reporting to the Information Security Manager, the role is focused towards ensuring the information security of bet365 and its staff. This technical role will provide an opportunity for a motivated individual who would like to move into a leading organisation which provides exposure to cutting edge technologies.
The role is focused on the security aspects of application development and tool assessment, rather than regulatory requirement or intrusion detection. As such experience of development is required (for the avoidance of doubt this is not a code QA role, but one where the objective is to spot and suggest fixes based on coding for security best practice.)
• Providing support to the Team Leader and line management.
• Reviewing manual and automated source code, especially for ASP.NET.
• Identifying any security flaws within purchased and in-house developed business software and managing through appropriately.
• System testing using approved bet365 methodologies.
• Security risk management.
• Creating technical documentation.
• Developing an understanding of the business and supporting more junior members of the team.
• Liaising with the business to ensure that information security requirements are complied with.
• Identifying any nonconformity within the business and escalating appropriately.
• Interfacing with external bodies as necessary.
• Taking an active role in the project process to ensure that information security points/matters are considered up front and throughout the project lifecycle.
• Taking an active role in external audits as necessary.
Knowledge and Experience:
• Previous experience in a development role (or similar security role where code reviews were conducted)
• Broad understanding of technology functions as they relate to information security.
• Use of planned, structured methodologies for conducting and reporting web application penetration testing.
• Excellent understanding of the general principles, practices and technologies of information/digital security.
• Examination of packets using Wireshark and other related tools.
• Experience in a technical support or operations environment.
• Experience with automated dynamic and static application security testing tools.
• Experience of manual security testing to find vulnerabilities and logical issues.
• Knowledge of developments in security technology and their application.
• Knowledge of risk management methodologies.
• Understanding of industry standard information security practices.
• Understanding of network infrastructure and network engineering topics.
• Awareness of PCI DSS current version.
Skills and Attributes:
• Strong communication skills and personable.
• Ability to make informed decisions.
• Strong stakeholder management.
• Excellent communication and interpersonal skills.
• Attention to detail.
• Excellent documentation skills.
• Ability to work to deadlines.
• Excellent organisational skills.
• Process orientation.
• Pragmatic approach to the administration of governance and risk.
• Appreciation of IT principles.
• Committed, flexible, ‘can do’ attitude towards work.
Apply For This Job
If you believe you possess the skills and experience necessary for this role then please email your CV and Covering Letter quoting the Position Reference ISS1117BW. Alternatively you can send the application by post to Human Resources Department, Hillside (Shared Services) Limited, bet365 House, Media Way, Stoke-on-Trent, England, ST1 5SZ.