NewYorkRecruiter Since 2001
the smart solution for New York jobs

Governance Senior Manager

Company: FanDuel
Location: New York
Posted on: November 26, 2022

Job Description:

ABOUT FANDUEL GROUP FanDuel Group is a world-class team of brands and products all built with one goal in mind - to give fans new and innovative ways to interact with their favorite games, sports, teams, and leagues. That's no easy task, which is why we're so dedicated to building a winning team. And make no mistake, we are here to win, but we believe in winning right. That means we'll never compromise when it comes to looking out for our teammates. From our many opportunities for professional development to our generous insurance and paid leave policies, we're committed to making sure our employees get as much out of FanDuel as we ask them to give. Our brands include:

  • FanDuel - A game-changing real-money fantasy sports app
  • FanDuel Sportsbook - America's #1 sports betting app
  • FanDuel TV - "The Bettor Sports Network" bringing live sports and interactive content to the games fans care about most
  • FanDuel Racing - A horse racing app built for the average sports fan
  • FanDuel Casino & Betfair Casino - Fan-favorite online casino apps
  • FOXBet - A world-class betting platform and affiliate of FanDuel Group
  • PokerStars - The premier online poker product and affiliate of FanDuel Group THE POSITION: Our roster has an opening with your name on it We are looking for a Governance Senior Manager in the Information Security Governance, Risk, and Compliance (GRC) team. As a Governance Senior Manager, you will leverage your experience to manage FanDuel Cybersecurity Department, Information Security Policies, Standards and Guidelines, ISO 27001 Information Security Management System (ISMS) and Business Continuity/Disaster Recovery across the enterprise to reduce information security and information technology (IT) risks.THE GAME PLAN:Everyone on our team has a part to play
    • Lead Cybersecurity Department (CSD) by developing and managing risk register in alignment against Information Security Policies for the security of confidentiality, availability, integrity of information, business delivery, technology, and safety.
    • Lead Security Governance, Business Continuity/Disaster Recovery, and ISO team to create, enhance, support, and enforce security policies and practices for risk mitigation.
    • Lead ISO 27001 and financial certifications for FanDuel Group.
    • Bring your expertise in risk assessment to assess and report on our information systems ensuring processes and procedures are followed according to Information Security Policy requirements and best practices.
    • Identify and analyze the inherent risks in applications and supporting infrastructure and the controls that management has implemented to mitigate risks.
    • Lead the implementation of ISO 27001 framework alignment with the Information Security management System (ISMS) per FDG vertical and drive FDG
    • Lead the initiative to train all new hires on the Governance team and create a continuous yearly training process for member firms within the organization to understand the CSD Risk posture and act as a mentor/subject matter expert.
    • Lead, manage, and execute complex IT assessment projects including internal audits, system implementations, and specialized IT areas (cloud, devsecops, agile development).
    • Drive a culture of risk awareness, risk and control visibility with measurable risk reduction and effective reporting, and governance of risk reduction activities.
    • Perform assessments and technical review to ensure adherence for compliance. Evaluate risks - known and unknown - within the company and its operations in accordance with known industry frameworks (i.e., ISO, SCF, NIST, GLI-33).
    • Document, assess, investigate, and map known and unknown areas of risk, then present steps to remediate and/or mitigate risk, as appropriate.
    • Manage the planning and implementation of policies, standards, and procedures to protect FanDuel's Information Security assets, including the scheduling, and leading of management review meetings.
    • Create an asset register to identify and analyze the inherent risks within Cybersecurity Dept. and Technology.
    • Collaborate with the various SMEs departments at FanDuel in maintaining the ISMS.
    • Lead and participate in business continuous improvement and continuity efforts such as presentations, training, and meetings.
    • Lead business continuity and Disaster recovery team to reduce risk associated with the loss of availability.
    • Create system security plans, plan of action and milestones, personnel training, and help drive security governance to support the ISMS.
    • Facilitate and maintain Risk assessment and Risk treatment plan execution and database status to support the ISMS.
    • Document within GRC tool all nonconformities and drive remediation efforts for risks identified in the risk register.
    • Lead security awareness training for the organization.
    • Lead Data Lifecycle program for Cybersecurity Department. THE STATS:What we're looking for in our next teammate
      • At least 7-10 years of Risk Management, Information Security, IT auditing or equivalent experience.
      • Certifications such as CISSP, CISA, CGEIT, CRISC, CAP, and ISO 27001 Third Party Lead Auditor is a plus.
      • Demonstrate a strong understanding of Information Security, the IT environment, and their impact on business risk.
      • Risk Management experience, including developing and deploying remediation plans required.
      • Experience running and managing risk assessments and risk registers for a firm with significant regulatory requirements, preferably Financial Services.
      • Experience designing, documenting, and evaluating Security and IT compliance requirements based on the needs of an organization.
      • Ability to lead GRC monthly risk metrics and report any incidents for regulatory requirements for FanDuel Group.
      • Easily adapt to a rapidly evolving, faced-paced, cyber security environment as it relates to changes in strategy or risk.
      • Experience with using GRC platforms like ZenGRC considered a major plus.
      • Demonstrate ability to develop a strategy, and design and execute on the associated plan.
      • Strong knowledge of ISO 27001 requirements and their applicability.
      • Strong analytical, interpersonal, and communication skills (both verbal and written).
      • Experience leading and mentoring others to help them grow in their positions and the industry.
      • Strong project management skills and ability to work independently on engagements.
      • Bachelor's degree or higher in Cybersecurity, Cyber Defense, Information Management Systems, or equivalent Cybersecurity qualifications.
      • Experience in data privacy standards like GDPR, CCPA is a plus.
      • Privacy certifications, such as CDPSE or CIPP/CIPM, is a plus.
      • Experience with PCI DSS, including previous certification as a QSA, ISA, PCIP, is a plus.
      • Job description may change depending on business needs. THE CONTRACT: We treat our team right Competitive compensation is just the beginning. As part of our team, you can expect:
        • An exciting and fun environment committed to driving real growth
        • Opportunities to build really cool products that fans love
        • Mentorship and professional development resources to help you refine your game
        • Flexible vacation allowance to let you refuel
        • Hall of Fame benefit programs and platforms The applicable salary range for this position is $123,500 to $154,400 which is dependent on a variety of factors including relevant experience, location, business needs and market demand. This role may also be eligible for short-term or long-term incentive compensation. FanDuel Group is an equal opportunities employer. Diversity and inclusion in FanDuel means that we respect and value everyone as individuals. We don't tolerate bias, judgement or harassment. Our focus is on developing employees so that they reach their full potential. #LI-Hybrid

Keywords: FanDuel, New York , Governance Senior Manager, Executive , New York, New York

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest New York jobs by following @recnetNY on Twitter!

New York RSS job feeds