Team Lead Privacy and Access management

FAVBET Tech develops software that is used by millions of players around the world for the international company FAVBET Entertainment.
We develop innovations in the field of gambling and betting through a complex multi-component platform which is capable to withstand enormous loads and provide a unique experience for players.
FAVBET Tech does not organize and conduct gambling on its platform. Its main focus is software development.

Main areas of work:

• Betting/Gambling Platform Software Development — software development that is easy to use and personalized for each customer;
• Highload Development — development of highly loaded services and systems;
• CRM System Development — development of a number of services to ensure a high level of customer service, effective engagement of new customers and retention of existing ones;
• Big Data — development of complex systems for processing and analysis of big data;
• Cloud Services — we use cloud technologies for scaling and business efficiency.

Responsibilities:

• Implementation and development of access management systems and confidential information protection technologies (IAM, PAM, MFA, DLP, etc.) across on-premises and cloud infrastructures, including the use of AI and Zero Trust principles.
• Ensuring detection, response, and analysis of security incidents. Development and implementation of corrective and preventive measures and controls.
• Implementation and development of approaches (RBAC, SoD) and processes for managing the access lifecycle.
• Ensuring protection of identification and authentication processes.
• Implementation and enhancement of processes and mechanisms for the inventory, labeling, and destruction of confidential and personal data.
• Ensuring the security of databases.
• Participation in strategic planning and definition of development directions.
• Participation in risk assessment processes and audits.
• Contribution to the development and implementation of internal regulatory documentation.

Skills:

• At least 3 years of experience in information security, including 1 year in a managerial position.
• In-depth knowledge of access management processes and confidential data protection, principles of privileged access security, and secure authentication mechanisms.
• Experience with the implementation and use of identity, access, and data protection management systems.
• Knowledge and experience with IT/IS services in AWS, Azure, and virtualization platforms.
• Understanding of the Zero Trust concept and principles of secure architecture design.
• Knowledge and practical skills in incident management.
• Experience in using and securing database management systems (DBMS).
• General understanding of network security principles.
• Knowledge of GDPR requirements.
• Experience in project and change management.
• English proficiency — upper-intermediate level or higher.

Preferred Qualifications:

• Knowledge of international standards such as ISO 27001, PCI DSS.
• Relevant information security certifications.
• Experience in risk assessment.
• Practical automation skills (Python, PowerShell, etc.).

We can offer:

• 30 days off per year (vacation and sick days) — we value rest and recreation. We also comply with the national holidays.
• Medical insurance for employees and the possibility of training employees at the expense of the company and gym membership.
• Remote work; after Ukraine wins the war — our own modern lofty office with spacious workplace, and brand-new work equipment (near Pochaina metro station).
• Flexible work schedule — we expect a full-time commitment but do not track your working hours.
• Flat hierarchy without micromanagement — our doors are open, and all teammates are approachable.

During the war, the company actively supports the Ministry of Digital Transformation of Ukraine in the initiative to deploy an IT army and has already organized its own cyber warfare unit, which makes a crushing blow to the enemy’s IT infrastructure 24/7, coordinates with other cyber volunteers and plans offensive actions on its IT front line.