Security Engineer II

New York, NY, United States

Company Overview   Fanatics is building a leading global digital sports platform. The company ignites the passions of global sports fans and maximizes the presence and reach for hundreds of sports partners globally by offering innovative products and services across Fanatics Commerce, Fanatics Collectibles, and Fanatics Betting & Gaming, allowing sports fans to Buy, Collect and Bet. Through the Fanatics platform, sports fans can buy licensed fan gear, jerseys, lifestyle and streetwear products, headwear, and hardgoods; collect physical and digital trading cards, sports memorabilia, and other digital assets; and bet as the company builds its Sportsbook and iGaming platform. Fanatics has an established database of over 100 million global sports fans, a global partner network with over 900 sports properties, including major national and international professional sports leagues, teams, players associations, athletes, celebrities, colleges, and college conferences, and over 2,000 retail locations, including its Lids retail business stores.    As a market leader with more than 18,000 employees, and hundreds of partners, suppliers, and vendors worldwide, we take responsibility for driving toward more ethical and sustainable practices. We are committed to building an inclusive Fanatics community, reflecting and representing society at every level of the business, including our employees, vendors, partners and fans. Fanatics is also dedicated to making a positive impact in the communities where we all live, work, and play through strategic philanthropic initiatives.

The expected salary range for this role is based on job-related knowledge, skills, and experience. This role is eligible for the Fanatics Betting and Gaming annual bonus program and an equity award. *Salary range is listed in USD; ranges will change based on country and state of residence, which are reflected in Geographical Zones defined by Fanatics Betting and Gaming.

*Salary Range: $100,000 to $198,000 (Salary range incorporates all of our Geographical Compensation Zones and is subject to change as the Zone associated with the actual Offer is confirmed).

In addition to the base, bonus, and equity, full-time employees are eligible for Medical, Dental, Vision, 401K, paid time off, and other benefits like GymPass, Pet Insurance, Family Care Benefits, Free Shipt deliveries, and more. We’ll also give you $500 to set up your home office! For information about our benefits, please visit https://benefitsatfanatics.com/

Overview As an SECURITY ENGINEER II at Fanatics Betting & Gaming (FBG), your knowledge and experience in designing, implementing and maintaining security measures will help the organization stay ahead of security risks and protect company assets. Responsibilities Maintain cloud security architecture strategy that supports industry best practices.

Responsible for the execution of DevSecOps strategy.

Manage security and infrastructure configurations by leveraging Infrastructure-As-Code tools such as Terraform.

Responsible for cloud security management which includes identifying, tracking and advising on all cloud security threats and vulnerabilities.

Responsible for writing custom detections to improve cloud threat detection and observability.

Collaborate with internal teams to ensure that secure implementation guidelines are followed.

Responsible for investigation, remediation and root cause analysis of all cloud security events escalated from MSSP, CSPM, SIEM and other notification mechanisms.

Participate in an on-call rotation to provide 24/7 support for critical incident escalations.

Stay up-to-date on the latest threats, vulnerabilities, and security trends to ensure that our organization is prepared to address emerging threats.

Qualifications Minimum of 3 years of experience as a security engineer or in a similar role

Experience with identity management protocols (e.g., OAuth, SAML, OpenID Connect).

Demonstrated experience leveraging Infrastructure as code tools such as Terraform or Ansible.

Demonstrated experience in incident response, threat hunting and infrastructure management in a cloud environment (e.g., AWS, AZURE, GCP).

Ability to communicate effectively with technical and non-technical stakeholders.

Basic understanding of agile methodologies with the ability to successfully collaborate with multiple stakeholders.

Ability to collaborate and work in a team environment.

Proven experience drafting documentation such as standards, policies and architecture diagrams.

Experience with scripting languages such as Python or Bash is a plus.

Relevant certifications such as OSCP, SSCP, or GSEC are a plus.

If you possess some of these skills but not all of them, we still encourage you to apply! Ensure your Fanatics job offer is legitimate and don’t fall victim to fraud.  Fanatics never seeks payment from job applicants. Feel free to ask your recruiter for a phone call or other type of communication for interview, and ensure your communication is coming from a Fanatics or Fanatics Brand email address (this includes @betfanatics.com).  For added security, where possible, apply through our company website at www.fanaticsinc.com/careers

Tryouts are open at Fanatics! Our team is passionate, talented, unified, and charged with creating the fan experience of tomorrow. The ball is in your court now.

Fanatics is committed to responsible planning and purchasing (RPP) practices, working with its business partners across its global and multi-layered supply chain, to ensure that planning, sourcing, and purchasing decisions, along with other supporting processes, do not impede or conflict with the fulfillment of Fanatics’ fair labor practices.

NOTICE TO CALIFORNIA RESIDENTS/APPLICANTS : In connection with your application, we collect information that identifies, reasonably relates to or describes you (“Personal Information”). The categories of Personal Information that we collect include your name, government issued identification number(s), email address, mailing address, other contact information, emergency contact information, employment history, educational history, criminal record, and demographic information. We collect and use those categories of Personal Information about you for human resources and other business management purposes, including identifying and evaluating you as a candidate for potential or future employment or other types of positions, recordkeeping in relation to recruiting and hiring, conducting criminal background checks as permitted by law, conducting analytics, and ensuring compliance with applicable legal requirements and Company policies. For additional information on how we collect and use personal information in connection with your job application, review our Candidate Privacy Policy-CA