E-mail: betterlocaljobs@gmail.com

Business Information Security Officer

Contract @Garniche Jobs UK in IT
  • Nationwide View on Map
  • Post Date : November 15, 2022
  • Apply Before : December 16, 2022
  • Salary: $500.00 - $500.00
  • 0 Click(s)
  • View(s) 2
  • Share:

Job Detail

  • Job ID 278773

Job Description

Business Information Security Officer (BISO)

We entertain our customers in new and exciting ways.
We're a tech and digital company that quickly grew to become a market leader in the betting and gaming world. How? By understanding what our players want, and then giving it to them. Bigger. Bolder. Better.
Our Sky heritage means 'better' runs through us like a stick of rock. Today we have more than 1,400 colleagues – and every single one of us takes the responsibility and the opportunity to create amazing experiences for our players and that demands better tech, better products & better offers.
We've doubled in size over the last five years. And we're only just getting started.
At Sky Betting & Gaming you get the chance to become even better than you've ever been. It's a place where you can be who you really want to be and grow the way you want to grow. Everything we've done – better – has got us to where we are today. It's made us one of the Top 100 Best Companies to work for 6 years in a row.
Tomorrow, we can go even further because at Sky Betting & Gaming, better is just the beginning.

We're the Tribe that provides practical, effective security guidance, frameworks and services to support the whole of the business. We are responsible to ensure the company has solutions in place to protect SBG, our colleagues and customers. We obsess about supporting and collaborating across the division to deliver solutions with security "baked in".
Whether it's providing clarity and insight into operational security concerns for upper management or working knee deep with engineers to overcome technical challenges, we provide information security services and guidance to enable those at all levels to make decisions that help ensure that as a business we deliver robust and secure services for our customers.

Reporting to the Infosec Engagement Manager, our BISO's are passionate about information security delivery and work collaboratively with our InfoSec Tribe colleagues, as well as being the "go to" person for our diverse Product and Technical Tribes across Sky Betting and Gaming. The BISO?is?the focal point?of our infosec relationship, ensuring effective engagement?with all our Information Security process, policies, and procedures.?


Work with tribe leadership, product owners, architects, developers, engineers, and service managers to build security into every delivery.
Support tribes in understanding the requirements of SBGs Policy framework.
Help tribes to understand SBGs risk appetite and to manage their products and applications accordingly.
Assist in the design, implementation and operation of business processes and services (where information security is a consideration).
Enable the Product and Technical Tribes at Sky Betting and Gaming (SBG) to achieve their objectives without compromising information security.
Recommend appropriate security controls and risk mitigation strategies.
Provide technical advice and best practise guidance across multiple technology platforms including APIs, cloud/serverless solutions, containers, data services, infrastructure, mobile apps, networking, and others.
Develop and improve application, project and 3rd party risk assessments.
Responsible for driving the vulnerability management remediation with the Tribes and help to scope security vulnerability assessments. We track results and findings through to resolution.
Define the Information Security technical requirements for products and applications based on our knowledge of regulatory and statutory requirements.
Actively develop, coach and mentor security tribe colleagues through the mutual sharing of knowledge and experience, training and on the job development.
Enable delivery.


Strong inter-personnel, analytical & communication skills and experience of working directly with both technical and non-technical stakeholders
Previous experience of working in an agile environment that uses matrix management across squads/tribes to deliver solutions?
Experience of working with third party suppliers and business partners to deliver services.
A personal drive to use data, metrics and analysis to support service delivery and technical/ business strategy development.
Knowledge of IT risk and security frameworks and standards e.g. ISO27001, PCI, NIST, SOX, ISF, etc. and key security GDPR privacy requirements
Ability to identify key issues, provide appropriate MI and communicate operational status and risks to stakeholders, leveraging colleagues as needed
Passion for maintaining technology awareness across a wide spectrum; Networks, security technologies, Cloud, infrastructure and platforms, automated software pipelines, etc