Entain

Sports betting, gaming and interactive entertainment

CyberSecurityGovernanceSpecialist-ISMSManager

Sofia, Sofia-Capital, Bulgaria FULL TIME

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for mid candidates.

The Brief

“CyberSecurity Governance Specialist - ISMS Manager at Entain. Skills: ISMS Management, ISO/IEC 27001: 2022, Cybersecurity Governance, Compliance, Risk Management, Auditing. Own and operate Entain's Global ISO/IEC 27001: 2022 ISMS assurance schedule. Ensure timely execution of internal audits, control reviews, and external audit readiness”

Industry & Context.

Sports betting, gaming and interactive entertainment

Problems you'll solve

Root cause analysis; Remediation of non‑conformities; Assessing and tracking issues; Identifying, escalating, and managing audit risks, conflicts, and delivery issues

What They're Looking For.

Must Have

ISO/IEC 27001: 2022 Lead Auditor certification, Minimum 5 years' experience managing or coordinating an ISMS schedule for a large or complex organisation, Demonstrable experience supporting or participating in ISMS Steering Committees, Experience working with Enterprise Risk Management functions, Proven experience coordinating non‑conformity remediation activities, experience working with external certification bodies and auditors, including audit scheduling and preparation, Excellent written and verbal communication skills

Nice to Have

Experience with additional ISO standards, including ISO 27701, ISO 22301, ISO 42001, ISO 45001, and ISO 14001, Previous experience working directly for, or in close partnership with, external audit or certification bodies, Relevant security or audit certifications (e.g. CISA, CISSP), Prior experience in a regulated or highly controlled industry

What You'll Do.

Own and operate Entain's Global ISO/IEC 27001: 2022 ISMS assurance schedule

Ensure timely execution of internal audits

and external audit readiness

Management of Security Policies and relevant procedures

and coordinate ISMS activities and resources

Maintain continuous compliance with ISO/IEC 27001: 2022 requirements

Lead the management and remediation of non‑conformities

Contribute to ISMS risk and remediation forums

Act as the primary coordination point for internal security reviews and external certification audits

and executive‑ready communications relating to audit outcomes

and remediation progress

Apply working knowledge of cybersecurity frameworks

and technology governance processes

Support the design and evolution of ISMS controls

Build relationships with internal stakeholders and business sponsors

Translate complex technical and IT concepts into clear

accurate assurance and audit requirements

and manage audit risks

Drive technical compliance reviews

Promote awareness of ISMS framework control requirements across the organisation

How You'll Work.

Team & Collaboration

Build relationships with internal stakeholders and business sponsors; Act as the primary coordination point for internal security reviews and external certification audits; Coordinate ISMS activities and resources; Collaborate with internal stakeholders to ensure ISMS activities are delivered with minimal operational disruption

Communication Scope

Excellent written and verbal communication skills; Produce clear, accurate, and executive‑ready communications relating to audit outcomes, assurance status, and remediation progress; Translate complex technical and IT concepts into clear, accurate assurance and audit requirements

Process & Methodology

Planning ISMS activities, Prioritising ISMS activities, Coordinating ISMS activities and resources, Managing remediation activities, Managing audit risks, conflicts, and delivery issues

Full Job Description

Sports betting, gaming and interactive entertainment is changing, and we're leading that change. By putting people first. By placing exciting, engaging and entertaining experiences at more fingertips than ever before. We're pulling into pole position by pushing boundaries further. With innovation. With technology. But most importantly, with people like you. Because when you join Entain, it's your game. So let's win together. CyberSecurity Governance offers Internal and External services relating to Compliance, Standards, Regulations, and Information Security to ensure alignment of our Technology offering with the obligations that the organization is exposed to. These requirements come mainly from the Regulatory Compliance team but are also defined by other stakeholders such as Finance, Payments, Marketing etc. This is a position for an experienced compliance professional who wishes to start a role within a busy global Cybersecurity team. As a Cybersecurity Governance Specialist responsible for Entain's Global ISMS schedule, you will ensure that the operations of Entain adhere to our Cybersecurity and Technical Compliance requirements, requiring designing and implementing improvements to address identified gaps and to help adapt the security posture of the organisation to the evolving global threat and regulatory landscape What you will do * Own and operate Entain's Global ISO/IEC 27001:2022 ISMS assurance schedule, ensuring timely execution of internal audits, control reviews, and external audit readiness. * Management of Security Policies and relevant procedures. * Plan, prioritise, and coordinate ISMS activities and resources to maintain continuous compliance with ISO/IEC 27001:2022 requirements. * Lead the management and remediation of non‑conformities, including root cause analysis, corrective actions, and evidence tracking. * Contribute to ISMS risk and remediation forums, ensuring issues are assessed, tracked, and resolved in line with risk appetite. * Act as

Free ATS check

Applying for this CyberSecurity Governance Specialist - ISMS Manager role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 45 detected · ranked by frequency

ISO/IEC 27001: 2022 ×3

Cybersecurity Governance ×3

Compliance ×3

Risk Management ×3

ISMS assurance schedule management ×3

Internal audits ×3

Control reviews ×3

External audit readiness ×3

Security Policies management ×3

Procedure management ×3

ISMS activities planning ×3

ISMS resource coordination ×3

Non-conformity management ×3

Root cause analysis ×3

Corrective actions ×3

Evidence tracking ×3

ISMS risk assessment ×3

Remediation tracking ×3

Auditor engagement ×3

Audit planning ×3

Audit logistics ×3

Communication of audit outcomes ×3

Assurance status reporting ×3

Remediation progress reporting ×3

ISMS control design ×3

ISMS control evolution ×3

Translating technical concepts ×3

Audit risk management ×3

Conflict management ×3

Delivery issue management ×3

Technical compliance reviews ×3

Awareness promotion ×3

BEHAVIOURAL

People firstBuilding relationshipsTeamworkCollaborationInclusivitySupport

Role Details

Experience 5–10 yrs

Level mid

Type FULL TIME

Category other

AI-Extracted Insights

Domain Areas

sports-bettinggaminginteractive-entertainmentcybersecurityinformation-securitycompliancestandardsregulations

Certifications

ISO/IEC 27001: 2022 Lead AuditorCISACISSP

How to Apply on SmartRecruiters

SmartRecruiters often includes a video screening step — check camera and mic permissions.
Link your GitHub or portfolio directly in the profile section for technical roles.
Applications may be reviewed by AI scoring before reaching a recruiter — use keywords from the job description.

ANONYMOUS · UNFILTERED

What do employees actually say about Entain?

Real rants from real employees. Read before you apply.

Read Company Rants →