FanDuel
Technology Governance & Controls Monitoring Senior Manager
FanDuel, New York, NY
ABOUT FANDUELFanDuel Group (“FanDuel") is an innovative sports-tech entertainment company that is changing the way consumers engage with their favorite sports, teams, and leagues. The premier gaming destination in the United States, FanDuel consists of a portfolio of leading brands across gaming, sports betting, daily fantasy sports, advance-deposit wagering, and TV/media. FanDuel has a presence across all 50 states with approximately 17 million customers and 28 retail locations. FanDuel is based in New York with offices in New Jersey, Georgia, California, Oregon, Canada and Scotland.Its networks FanDuel TV and FanDuel+ are broadly distributed on linear cable television and through its relationships with leading direct-to-consumer over-the-top platforms.FanDuel Group is a subsidiary of Flutter Entertainment plc, the world's largest sports betting and gaming operator with a portfolio of globally recognized brands and traded on the New York Stock Exchange (NYSE: FLUT).THE ROSTERAt FanDuel, we give fans a new and innovative way to interact with their favorite games, sports and teams. We’re dedicated to building a winning team and we pride ourselves on being able to make every moment mean more, especially when it comes to your career. So, what does “winning” look like at FanDuel? It’s recognition for your hard-earned results, a culture that brings out your best work—and a roster full of talented coworkers. Make no mistake, we are here to win, but we believe in winning right. That means we’ll never compromise when it comes to looking out for our teammates. From creatives professionals to cutting edge technology innovators, FanDuel offers a wide range of career opportunities, best in class benefits, and the tools to explore and grow into your best selves. At FanDuel, our principle of “We Are One Team” runs through all our offices across the globe, and you can expect to be a part of an exciting company with many opportunities to grow and be successful.THE POSITIONOur roster has an opening with your name on itWe are looking for a Senior Manager to lead our Technology Governance & Controls Monitoring team. You will drive strategy, establish and implement key governance processes, and implement tooling & automation to streamline control assurance and compliance activities for all Technology & Cybersecurity teams. This role requires a strong leader who can foster collaboration across departments, manage GRC tooling solutions to automate controls assurance & compliance activities, and ensure alignment with regulatory requirements and internal standards. The Technology Governance & Controls Monitoring Senior Manager will report to the Technology GRC Director within FanDuel Group’s Technology Assurance & Controls team.THE GAME PLANEveryone on our team has a part to playGeneral Program Strategy & OversightDevelop and execute a strategic plan for the Technology Governance & Controls Monitoring program to achieve department objectives.Define and document program goals, objectives, and key results that align with technology, cybersecurity, and regulatory requirements.Present regular updates on KPIs, KRIs, and program progress to leadership, ensuring transparency and accountability.Manage technical solution(s) supporting Technology Governance & Continuous Controls Monitoring, driving automation and continuous improvement to improve overall operational efficiency.Maintain contact with vendors, industry peers, and professional associations to keep informed of existing and evolving industry standards, technologies, and cyber threats.Perform and/or support special initiatives, as assigned.Technology & Cybersecurity Governance & Policy ManagementLead the team responsible for the development, implementation, and maintenance of policies, standards, and procedures ensuring compliance with regulations and applicable industry best practices.Establish and operate key governance forums to oversee technology and cybersecurity risk and compliance activities.Identify opportunities to enhance technology & cybersecurity governance processes and adapt the program to meet future organizational needs and reduce overall operational efficiencies.Develop and implement an efficient process to respond to external requests for information from auditors, regulators, and customers, ensuring timely and accurate delivery of required documentation and evidence.Continuous Controls Monitoring & AssuranceLead the team responsible for automation and engineering-led solutions for Tech & Cyber control assurance, evidence collection, and summary reporting.Advise key stakeholders on ways to enable better audit and assurance testing of technology and cybersecurity controls against FanDuel policy requirements and key authoritative sources (e.g., NIST CSF, SOX ITGC, SOC2, PCI, GLI).Drive the alignment of all testing automation and control monitoring with applicable internal policies, guidance, regulations, applicable laws, and standards.Ensure timely alerts and identification of control drift and work with control owners, Tech GRC, and Enterprise Risk team members to document a path to green.Identify opportunities for automation and improvement to help the team and other key stakeholders work smarter, faster, and more effectively.Conduct continuous research, development, and adaptation of innovative technologies, best practices, and strategies to increase the effectiveness of continuous monitoring within the context of the company's operational landscape.Team Leadership & CollaborationManage and mentor a hybrid team of GRC analysts and engineers, fostering career development and accountability.Collaborate with cross-functional teams to integrate continuous monitoring into new or existing technology & security workflows.Provide training and support to relevant stakeholders to drive adoption of governance and control monitoring processes and tools.Stakeholder EngagementBuild strong relationships with key stakeholders across Risk, Compliance, Internal Audit, and Engineering to ensure alignment on governance initiatives.Serve as a trusted advisor, keeping stakeholders informed of evolving industry standards and best practices.THE STATSWhat we're looking for in our next teammateMinimum 10 years of IT or Security GRC experience or across a variety of relevant engineering roles in a highly regulated industry.5+ years in a management role; demonstrated success leading senior professionals and developing a strong organization and workforce in a complex, service-intensive, deadline-driven environmentHands-on experience with continuous control monitoring tools such as Anecdotes or building custom technical assurance capabilities with integrations with GRC tools such as ZenGRC and AuditBoard.Strong track record of delivering IT and Security governance programs including policy lifecycle management.Advanced technical knowledge of cloud technology (AWS, GCP), security controls, database systems, network systems, auditing and compliance software and tools, and IT infrastructure. Hands-on experience with IT controls, internal auditing, or IT risk management, including NIST CSF, ISO, SOX, SOC2, PCI, CIS Critical Controls, COBIT, ITIL, and CMMI. Exposure to GLI preferred.“Stay Hungry, Stay Humble” mindset that strives to continuously learn and share new skills with others, and embraces a steep learning curve to understand our business and technology drivers to get the job done“Anything Is Possible” attitude that is highly organized and results-driven to solve our most important challengesComfortable navigating shifting priorities in a fast-paced environment, with the ability to work independently with minimal supervision while also as an exceptional team player that excels at cultivating relationships and promoting collaboration and cohesiveness to fulfill our “We Are One Team” principleExcellent communication skills, with the ability to effectively interact with senior leadership and cross-functional teams.Proficient working with Microsoft Office and Agile project management tools (e.g., Atlassian JIRA / Confluence).Relevant cybersecurity certification(s), including CISSP, CISA, CISM, or CCSP preferred.PLAYER BENEFITSWe treat our team rightFrom our many opportunities for professional development to our generous insurance and paid leave policies, we’re committed to making sure our employees get as much out of FanDuel as we ask them to give. Competitive compensation is just the beginning. As part of our team, you can expect:An exciting and fun environment committed to driving real growthOpportunities to build really cool products that fans loveCareer and professional development resources to help you refine your game plan for owning and driving your career and developmentBe well, save well and live well - with FanDuel Total Rewards your benefits are one highlight reel after anotherFanDuel is an equal opportunities employer and we believe, as one of our principal states, “We Are One Team!” We are committed to equal employment opportunity regardless of race, color, ethnicity, ancestry, religion, creed, sex, national origin, sexual orientation, age, citizenship status, marital status, disability, gender identity, gender expression, Veteran status, or another other characteristic protected by state, local or federal law. We believe FanDuel is strongest and best able to compete if all employees feel valued, respected, and included. We want our team to include diverse individuals because diversity of thought, diversity of perspectives, and diversity of experiences leads to better performance. Having a diverse and inclusive workforce is a core value that we believe makes FanDuel stronger and more competitive as One Team!The applicable salary range for this position is $158,000 - $198,000, which is dependent on a variety of factors including relevant experience, location, business needs and market demand. This role may offer the following benefits: medical, vision, and dental insurance; life insurance; disability insurance; a 401(k) matching program; among other employee benefits. This role may also be eligible for short-term or long-term incentive compensation, including, but not limited to, cash bonuses and stock program participation. This role includes paid personal time off and 14 paid company holidays. FanDuel offers paid sick time in accordance with all applicable state and federal laws.#LI-Hybrid