Company Description

Entain is a global, cutting-edge software and support services provider, partnering with one of the world's biggest online gaming and entertainment groups. Founded in 2001, we've grown from a small tech company in Hyderabad to one creating innovative software solutions used by millions of consumers around the world, with billions of transactions taking place to head even some of the biggest technology giants. Focused on quality at scale, we deliver excellence to our customers day in and day out, with everyone working together to make what sometimes feels impossible, possible.

This means that not only do you get to work for a dynamic organization delivering pioneering technology, gaming and business solutions, you can also have an exciting and entertaining career. At Entain, Bright Minds Shine Brighter.

Job Description

About the Role
BetMGM is seeking a Cybersecurity Analyst to is responsible for ensuring the security, integrity, and compliance of enterprise systems through the execution of internal identity and access management (IAM) audits, information security configuration audits, and third‑party risk assessments. This role plays a key part in maintaining strong security controls, supporting regulatory compliance, and reducing risk across the organization. This position is under the supervision of the Sr Director Cyber & IT Risk.

The Cybersecurity Analyst will collaborate with cross‑functional teams, business owners, third‑party vendors, and internal security stakeholders to validate access controls, strengthen configuration baselines, and assess external partners for compliance with security policies and regulatory expectations. The Cybersecurity Analyst will be expected to leverage your expert knowledge of today's ever-changing cybersecurity, technical state regulations and risk landscape to increase BetMGM's security posture, mitigate risk and ensure resilience and integrity of our systems.

Responsibilities

• Conduct recurring user access reviews and entitlement audits across enterprise systems to ensure least‑privilege and role‑appropriate access, consistent with internal IAM program objectives.
• Identify excessive access, segregation‑of‑duties concerns, permission drift, and access inconsistencies; document findings and coordinate remediation with system owners.
• Support the development and maintenance of role‑based access control (RBAC) models and documentation.
• Review and validate access provisioning, deprovisioning, and exception workflows.
• Maintain audit evidence and ensure readiness for regulatory or internal audit reviews.
• Perform internal audits of information security controls and system configurations, ensuring adherence to internal policies and industry frameworks such as ISO 27001, NIST 800‑53, and PCI.
• Assess systems for compliance with configuration baselines, hardening standards, and security best practices.
• Document gaps, deviations, and misconfigurations; work with engineering and operations teams to drive remediation.
• Execute third‑party cybersecurity assessments following the operational model described in the BetMGM Third Party Security Assessment Playbook.
• Review vendor security questionnaires, validate responses, and support due‑diligence processes.
• Identify, document, and communicate risk findings to internal stakeholders; follow up on remediation and reassessments.
• Maintain accurate and complete vendor risk records within the GRC platform.
• Provide advisory support to business units on vendor‑related security considerations.
• Day to day involvement in the adherence to and enforcement of information security policies, procedures and practices.
• Monitor and analyze for emerging threats or vulnerabilities. Stay current with the latest cybersecurity trends and technologies to enhance BetMGM's preparedness and overall security posture.
• Be knowledgeable of and work to implement strategies to ensure BetMGM adheres to industry best practices for information security, is in compliance with relevant cyber and data privacy laws and regulations, and is in compliance with applicable regulatory requirements for information security and data privacy.
• Provide insights and recommendations based on data-driven analysis to support decision-making processes.
• Prepare comprehensive reports as well as communicate findings and recommendations to relevant stakeholders, including senior management and cross-functional teams.
• Contribute to Kanban boards to monitor, adapt and improve.
• Stay on top of the latest emerging technology trends and proactively update processes where needed.

Essential Functions

• Must be able to stand or sit and operate computers and other technological devices for extended periods of time