Senior IT Auditor/Compliance

Job Type:
Sofia, Bulgaria

We are looking for Senior IT Auditor/Compliance to join our busy and dynamic team based in our Bulgaria office!

Why we need you:

You’ll be acting in a leading role in owning the domestic/international internal and external IT audits (e.g. PCI, SOX, ARJEL, DGOJ etc.). You’ll be collaborating with technical teams across different product verticals, external test labs & partners of ours, with an overall objective of maintaining compliance in various regulated markets. We’ll be looking for you to develop and maintain the user documentation portfolio for policies, standards, processes, procedures, guidelines and diagrams and provide advisory services for IT security, governance, audit and risk areas.

You can expect to play a leading part in the company's PCI-DSS (a Level-1 Merchant) annual certification audit process, SOX annual certification audit process, ARJEL (French regulator) annual certification audit process and the company’s internal audit process, working with internal audit group from the IOM.

Who are we looking for:

You’ll be an expert in facilitating and performing external PCI-DSS and SOX audits. Most likely, you have an extensive background over a number of years in IT risk & audits across all four layers of IT infrastructure (networks, platforms, applications, databases). This includes vulnerability assessment, penetration testing and source code analysis.

We’ll be looking for you to be a strong leader in compliance, governance and risk mitigation management with a proven track record with IT security controls, operational and risk management, compliance frameworks and related systems.

You’ll have exposure to working in Identity and Access Management (IAM) using Sailpoint IdentityIQ / SecurityIQ platform. You’ll also have experience in the following IAM domains: Authentication, Access Request and Provisioning, Privileged Access Management, Reporting.

In terms of certifications, we’re looking for ISACA certifications such as CISA, CISM, CGEIT, CRISC. You may also have ISC2 certifications (CISSP, CSSLP), and/or SANS certifications (GPPA, GCIA).

If you have a working knowledge of COBIT, COSO, ITIL and ISO27002 frameworks including OWASP that’s beneficial, as is a working knowledge of Client-Server architecture, web applications, Red Hat Linux / CentOS, MS Servers 2012 and 2016, DB2, IIS. In addition, knowledge of firewalls, routers, intrusion detection / prevention systems (IDS / IPS) is a big plus.

What's in it for you?

The salary for this job is based on experience, so whilst we are not able to go into detail at this stage, we can say that we offer great salary packages and a discretionary annual performance bonus.

We offer health and dental insurance for you, your partner and your children (if you all live at the same address).In addition, you are entitled to a personal allowance interest which encourages our employees to upskill themselves or pursuing a hobby. A baby bounty is offered to our employees as well, granting 1000 BGN upon the birth of a child.

Our in-house training and development team deliver fantastic support to develop your skills and support you in progressing your career.

In the office there is always free fresh fruit, snacks and drinks. In addition, we contribute a certain amount to the transportation and lunch expenses of our employees.

Our employees can always enroll to our sports program, and in terms of relaxation we have a playroom, including a PlayStation and a pool table. Our social team organizing great events; including our sensational summer and Christmas parties.

What happens next?

We will aim to get back to you as soon as possible. If you meet the criteria, then we’ll invite you to a phone interview and if that goes well we’ll meet you for a face-to-face interview.

The Group:

The Stars Group is the ultimate owner of industry-leading gaming brands such as PokerStars, PokerStars Casino, BetStars, Full Tilt, and the PokerStars Live brands, and through its ownership of Sky Betting & Gaming, a mobile-led leading online gaming operator, licenses the Sky Bet, Sky Vegas, Sky Casino, Sky Bingo and Sky Poker online gaming brands. Collectively, these and other brands of The Stars Group have millions of registered customers globally, forming one of the world’s largest publicly listed online gaming companies. This role is in the Group’s Bulgaria service office in the Web Applications and Tools department.