Our client is a forward-thinking online gaming company operating in both B2C and B2B sectors. Known for their agility, collaborative culture, and delivery-focused mindset, they provide innovative solutions and exceptional user experiences in the iGaming industry. They are currently seeking an experienced Information Security Manager to strengthen their platform-as-a-service (PaaS) offering.

About the Role

The Information Security Manager will be responsible for leading security architecture and strategy for the company’s PaaS platform. This role involves designing and implementing comprehensive security frameworks to safeguard both infrastructure and customer gaming operations while ensuring compliance with strict regulatory standards across multiple jurisdictions.

Key Responsibilities

• Develop and implement a comprehensive information security strategy aligned with business objectives and regulatory obligations.
• Design and maintain security frameworks encompassing data protection, network security, application security, and infrastructure hardening
• Conduct risk assessments to identify vulnerabilities across IT systems and data management practices.
• Define and maintain security design patterns and architectural standards for internal development teams.
• Implement identity and access management solutions with robust role-based access controls.
• Build initial capabilities for security monitoring, incident response, and post-incident forensic analysis.
• Lead incident response efforts and develop crisis management plans to minimize operational and reputational impact.
• Ensure compliance with data protection and information security regulations, such as GDPR and PCI DSS.
• Stay current with emerging regulations and standards, adjusting internal policies as necessary.
• Mentor platform engineers in secure coding and development practices.
• Work closely with product, engineering, and DevOps teams to embed security throughout the development lifecycle.
• Evaluate, select, and manage security technologies, tools, and third-party services.
• Conduct security reviews for new platform features, integrations, and capabilities.
• Oversee the information security budget, allocating resources to address critical risks effectively.

Required Qualifications

• 4+ years of experience in cybersecurity.
• Proven experience designing security solutions for cloud-native, multi-tenant platforms.
• Background in platform-as-a-service (PaaS) or infrastructure-as-a-service (IaaS) environments.
• Strong expertise in cloud security (AWS, Azure, or GCP) and container orchestration security.
• Proficiency in network security, application security, and cryptographic techniques.
• Familiarity with API, microservices, and distributed systems security.
• Experience in security automation, Infrastructure-as-Code, and DevSecOps methodologies.
• In-depth understanding of PCI DSS, GDPR, and other data privacy regulations.
• Knowledge of iGaming industry regulations and compliance practices.
• Experience conducting security audits and managing compliance assessments.