Find a job

Senior Security Operations Engineer – SIEM and Detection Engineering - Flutter UK&I - 7656


Senior Security Operations Engineer – SIEM and Detection Engineering - Flutter UK&I

  • Primary Location:
    Cluj - Napoca
  • Contract Type:
  • Employment Basis:

Flexible benefits of your choice

Learning and development opportunities

25 days annual leave

Customized wellbeing programs

Extended health and travel insurances

Top trending technologies

Share this page
Share with linkedin
Share with facebook
Share with twitter
Share with email

The Senior Security Operations Engineer role is part of the UK&I Divisional Security team.  SecOps engineering has responsibilities across a number of key capabilities and each engineer is assigned an area of primary, secondary and in some cases tertiary focus, that best utilizes their skillset and is attuned to their career development preferences.

Working with other security and platform experts you will help ensure the delivery of effective, integrated 24x7 security operations service, building custom tools and analysis capability where necessary.

This role will have a core focus on SIEM and detection engineering.  The successful candidate will have in-depth experience in these areas and will be expected to influence their continuing development and maturity.

Your Responsibilities

  • Design, build and maintain detection capability via the SIEM.
  • Design and build custom tools and scripts as required.
  • Research and investigate emerging threats and implement capability to detect or mitigate.
  • Contribute to the continuous improvement of the security operations framework and investigative methodology.
  • Actively develop, coach and mentor security tribe colleagues through the mutual sharing of knowledge and experience, training and on the job development.
  • Provide expert investigative support for security incidents when required, including participation in an on call rota.
  • Provide assistance when required to deal with queries related to security operations or general security issues where appropriate.
  • Provide updates as required to technical and non-technical stakeholders to keep them informed of progress.

You are someone that:

  • Is a self-starter with excellent organizational and communication skills that can work with a minimal supervision or as part of a team to consistently deliver high quality results by agreed deadlines.
  • Is comfortable prioritising their own work and is capable of instructing, directing, assigning and overseeing work of others.
  • Has strong analytical skills, ideally gained through prior experience of security investigations, and can work calmly when presented with a security incident.
  • Understands and has a keen interest in Blue Teaming.
  • Has the ability to quickly understand and adapt to a complex, rapidly changing, global organisation.
  • Can adapt communication and interpersonal style based on audience and situation.
  • Work effectively with a variety of stakeholders from different technology and business levels.

Key Skills Required:

  • Extensive experience configuring and administering SIEM platforms.
  • Splunk certifications or comparable experience.
  • Expert knowledge of risk based alerting and how to configure it in Splunk ES.
  • In-depth knowledge of MITRE ATT&CK and how it can be used to improve detection capabilities.
  • Excellent knowledge of enterprise/corporate IT operations and standard enterprise security controls.
  • In-depth experience of incident management and technical incident investigation.
  • Can code to a reasonable standard.

What you can expect:

  • 25 days of annual leave;
  • Free breakfast;
  • Sharesave scheme;
  • „Flexible Benefits” of your choice;
  • Private health insurance (includes dental insurance and health assessments);
  • Free parking;
  • Thousands of courses online through "Udemy";
  • Working from home options.

Ways of working:

Flexible working is our way of working! We're a diverse workforce and therefore a 'one size fits all' approach isn't necessarily best. Whatever your personal needs may be, let's have a chat and see how we can accommodate them;

We thank all applicants for their interest, however only the suitable candidates will be contacted for an interview.

By submitting your application online, you agree that: your details will be used to progress your application for employment. If your application is successful, your details will be used to administer your personnel record. If your application is unsuccessful, we will retain your details for a period no longer than two years, in order to consider you for prospective Betfair Romania Development role.

Close map
Cluj - Napoca
Blvd. 21 Decembrie 1989, no. 77, The Office building, Betfair Romania Development, Entrance A, 4th Floor, Cluj, Romania, 400124


We are the largest technology and shared services hub of Flutter Entertainment Plc, an FTSE 100 company, with over 1,000 people powering the world’s leading brands in sports betting, gaming and entertainment.

Over 18 million customers worldwide enjoy the exciting, immersive and safe experiences delivered by our teams in Cluj-Napoca operating a unique portfolio of diverse proprietary brands such as Betfair, PokerStars, Paddy Power, FanDuel or SportsBet.


We’re home to the talented and the brave. If you’re tired of business as usual and want to create something new, you’ll love it here.

Just like our brands are leaders at global scale, that is the standard we hold up to when it comes to the opportunities we offer to our people, ensuring they have everything they need to succeed.

At Betfair Romania Development, one thing is for sure: you will experience different. Quick-thinking, adaptable and disruptive, we believe the future is what you make it.