FanDuel

Security Analyst (All Levels)

3+ months agoNew York, NY

ABOUT FANDUEL GROUP

FanDuel Group is a world-class team of brands and products all built with one goal in mind — to give fans new and innovative ways to interact with their favorite games, sports, teams, and leagues. That’s no easy task, which is why we’re so dedicated to building a winning team. And make no mistake, we are here to win, but we believe in winning right. That means we’ll never compromise when it comes to looking out for our teammates. From our many opportunities for professional development to our generous insurance and paid leave policies, we’re committed to making sure our employees get as much out of FanDuel as we ask them to give.

FanDuel Group is based in New York, with offices in California, New Jersey, Florida, Oregon and Scotland. Our brands include:

  • FanDuel — A game-changing real-money fantasy sports app
  • FanDuel Sportsbook — America’s #1 sports betting app
  • TVG — The best-in-class horse racing TV/media network and betting platform
  • FanDuel Racing — A horse racing app built for the average sports fan
  • FanDuel Casino & Betfair Casino — Fan-favorite online casino apps
  • FOXBet — A world-class betting platform and affiliate of FanDuel Group
  • PokerStars — The premier online poker product and affiliate of FanDuel Group

THE POSITION

Our roster has an opening with your name on it

As a valued member of the Security Operations Center (SOC) team, the Sr Security Analyst will be responsible for early and accurate detection, response and containment of threats directed against the environment. This role requires advanced skills in intrusion detection and threat hunting to identify credible risks/adversaries to proprietary and sensitive data before a potential breach. Collaboration with security engineers, developers, vendors and business units to constantly improve the overall security posture will be the key to success at FanDuel Group. We’re looking for a team player with highly technical analytical skills.

THE GAME PLAN
Everyone on our team has a part to play

  • Monitor and analyze network, server, endpoint, database and application activity for indicators of compromise and continuously tune rules to reduce false positives
  • Incident response for workforce and client-side applications
  • Hunt for existing and new threats within the network and endpoints
  • Scan, assess and mitigate vulnerabilities on internal company assets and FanDuel Group hybrid cloud-based customer platform
  • Investigate phishing email reports and interface with users in a professional manner
  • Contribute to information security process improvement and documentation
  • Keep current with cybersecurity news and technologies to implement new features in existing security solutions as well as strategically put new solutions on the roadmap
  • Identify, evaluate and conduct proof-of-concepts for new technologies and collaborate with security engineers on implementation
  • Develop business relationships and integrate activities with other departments to ensure successful implementation and support project efforts
  • Mentor business units in understanding and adhering to cybersecurity guidelines and best practices at work and home. Promote knowledge sharing within the technical communities
  • Foster and maintain good relationships with colleagues to meet expected customer service levels
  • Be responsible for all aspects of security and ensure remediation of issues (e.g. user access, regulatory, compliance) and/or automated methods to inhibit violations of security

THE STATS

What we’re looking for in our next teammate

  • Minimum 3-8 years of experience working in cybersecurity operations and incident response, to include utilizing Security Information and Event Management (SIEM) platforms, Cloud Security, Intrusion Detection/Prevention Systems (IDS/IPS), Web Application Firewalls, and Vulnerability Management and Threat Intelligence applications preferred
  • Bachelor of Science degree in Information Security, Engineering, Computer Science or related field preferred.
  • At least one of the following certifications with combined experience: CISSP, CEH, GCIH, GCFA, Security+, OSCP
  • Security operations experience with *nix/Windows operating systems, cloud resources (e.g. AWS, GCP, O365), and customer-facing web applications

Preferred Qualifications:

  • Experience writing queries in SQL, AWS (Athena, Aurora), GCP (BigQuery)
  • Programming/scripting experience (bash, python, PowerShell)
  • Knowledge of working with vendor API’s to automate tasks
  • Knowledge of the OWASP Top 10 web application security risks and how to minimize them
  • Excellent organizational and analytical skills
  • Ability to communicate clearly and professionally with all levels of an organization through excellent verbal and written communication skills
  • Skilled in problem diagnosis and resolution
  • Proficiency in multi-tasking and prioritizing projects.
  • Excellent time management skills and be accustomed to working within prescribed deadlines

 

THE CONTRACT
We treat our team right

Competitive compensation is just the beginning. As part of our team, you can expect:

  • An exciting and fun environment committed to driving real growth
  • Opportunities to build really cool products that fans love
  • Mentorship and professional development resources to help you refine your game
  • Flexible vacation allowance to let you refuel
  • Hall of Fame benefit programs and platforms

FanDuel Group is an equal opportunities employer. Diversity and inclusion in FanDuel means that we respect and value everyone as individuals. We don't tolerate bias, judgement or harassment.  Our focus is on developing employees so that they reach their full potential.

Job ID: 2622551