Skip to main content

Information Security Engineer

At DraftKings, we're inspired by our shared passion for developing creative solutions to complex challenges and empowering the people around us to do their best work. We are industry leaders in the digital entertainment and technology space and are propelled by constant curiosity and diverse perspectives.

Be the strategy behind the game.

As an Information Security Engineer, you will scale our security infrastructure and procedures. In this role, you will evaluate our current cloud security posture and provide recommendations for improvements, as well as stay up to date on new security technologies.  Our team isn’t satisfied with business as usual–we’re always looking for ways to disrupt traditional molds through progressive design, automation, and system implementation practices. Sound good to you? Join us. 

What you’ll do as an Information Security Engineer:

  • Perform threat models and risk assessments on large-scale cloud environments. 

  • Serve as our security expert on DraftKings security policies, industry regulations, and best practices. 

  • Contribute to the development and maintenance of information security policies, procedures, and strategy. 

  • Formulate red and blue teaming strategies aligned with business objectives and adjust security team priorities to maintain a strategic focus.

  • Form meaningful relationships with relevant stakeholders across the enterprise to build and maintain a comprehensive model of applicable, feasible threats and risks to the business.

  • Security experience in one or more of JS, C#, Python, cryptography, reverse engineering, common web vulnerabilities (SQLi, XSS, CSRF), and exploit security, and Agile Development processes.

What you’ll bring:  

  • 1-2 years of experience working in cloud computing and information security space. 

  • Experience in either Linux or Windows operating systems.  

  • Knowledge of Data Security, Networking, Cyber Attack Vectors, Application development.

  • 1+ years of cloud security experience, preferably within AWS or GCP.

  • Experience applying and managing infosec systems such as Rapid7 Products, Palo Alto Prisma, AWS Guard Duty, bug bounty programs, EDR systems, MS ATA, etc.

  • Understanding of vulnerability management and validation processes.

  • Manage Vulnerability and Pen testing activities both internally and with third parties.

  • CISM, CISSP, or CCSP a plus.

#LI-OK1
#LI-HYBRID

Join Us!

Our teams are fueled by innovation. We are looking ahead, building what’s next, and continuously reinventing the industry. We’re a publicly traded (NASDAQ: DKNG) technology company headquartered in Boston, with teams around the world and an expanding global presence.

We strive to create a place where all feel safe, empowered, engaged, championed, and inspired. DraftKings is proud to be an equal opportunity employer. This means we do not tolerate discrimination of any kind and are committed to providing equal employment opportunities regardless of your gender identity, race, nationality, religion, sexual orientation, status as a protected veteran, or status as an individual with a disability.

Ready to build what’s next? Apply now.

As a regulated gaming company, you may be required to obtain a gaming license issued by the appropriate state agency as a condition of employment.


Join Our Talent Community

Get discovered. Introduce yourself, and we’ll get in touch if there’s a role that seems like a good match.

Join now