Senior Information Security Analyst

Welcome to KTO Group, where innovation meets excitement in the iGaming world. Founded in 2018 by Andreas Bardun, our mission is to revolutionise the online gaming experience. At KTO, we are not just a company; we're a game-changer, dedicated to enhancing transparency and player satisfaction in Sportsbook and Online Casino gaming. Dive into the heart of the action on our website: KTO.com. Here, we blend the thrill of sports betting with the magic of online casinos, tailored to resonate with diverse markets. Our commitment to being hyper-local ensures that every player feels right at home. Powered by our proprietary KTO Platform, we bring you cutting-edge technology that personalises our players’ journey and streamlines their experience for ultimate enjoyment. KTO is rapidly rising as a star in the LATAM region, already claiming a spot among the top 10 iGaming brands in Brazil. Our vision is bold and clear: to lead the iGaming industry in LATAM, setting new standards in trust and transparency. When you join us, you contribute towards ensuring that every play is a step towards redefining the future of iGaming.

We are looking for an experienced and highly skilled Senior Information Security Analyst to join our IT & Security team. In this role, you will be responsible for leading efforts to protect our organization’s information systems from security threats and vulnerabilities. You will work closely with cross-functional teams to develop, implement, and monitor security measures that align with industry best practices and regulatory requirements. Your expertise will be crucial in safeguarding our digital assets and ensuring the integrity, confidentiality, and availability of our data.

1. Develop, implement, and maintain security strategies, policies, and procedures to protect the organization's data and IT assets.
2. Ensure alignment of security initiatives with the overall business objectives and regulatory requirements.
3. Lead the identification, assessment, and mitigation of security vulnerabilities within the organization's information systems.
4. Perform regular vulnerability assessments and penetration testing to uncover security weaknesses.
5. Perform regular risk assessments to evaluate the potential impact of security threats and determine appropriate risk management strategies.
6. Lead and coordinate the response to security incidents, including breach detection, investigation, containment, eradication, and recovery.
7. Conduct post-incident analysis and develop reports detailing the incident and preventive measures.
8. Oversee the continuous monitoring of network traffic, system logs, and security alerts to detect and respond to security threats in real-time.
9. Manage and optimize the deployment and configuration of security tools such as SASE, CASB, SIEM, etc.
10. Ensure compliance with relevant security standards and regulations (e.g., LGPD, GDPR, ISO 27001).
11. Prepare for and lead security audits, including the development of audit plans and the coordination of audit activities with internal and external stakeholders.
12. Develop and deliver security awareness programs and training sessions for employees, promoting best practices and reducing the risk of security breaches.
13. Advise on security risks and recommend appropriate measures to mitigate those risks across the organization.
14. Act as a key liaison between the IT department and other business units to ensure security measures are integrated into all areas of the organization.
15. Work closely with the legal and compliance teams to ensure that security practices meet legal and regulatory requirements.
16. Maintain detailed and up-to-date documentation of security policies, procedures, and incidents.
17. Prepare and present comprehensive reports on security metrics, incidents, and compliance status to senior management and other stakeholders.
18. Stay current with the latest security trends, threats, and technologies.
19. Identify opportunities for improving security processes and implement best practices to enhance the organization’s security posture.

1. Hands-on experience with infosec tools and platforms.
2. Demonstrated ability to develop and execute Infosec strategies.
3. Excellent leadership and team management skills, with a track record of building and leading high-performing teams.
4. Strong analytical and problem-solving skills, with a keen attention to detail.
5. Exceptional communication and stakeholder management abilities.

KTO is an equal opportunity employer and encourages applications from individuals of all backgrounds. We foster diversity and inclusion in our workforce.