Skip to main content

Senior SecOps Engineer

As a member of the Information Security Team, you’ll be continuously attacking and defending the DraftKings web applications, cloud environments, onPrem datacenters and IT infrastructure  to ensure the best security for our data, systems, customers and employees. Our team consists of forward-thinking individuals who want to disrupt the traditional mold through progressive design, automation, and system implementation practices.

What you’ll do as a Senior Security Engineer:

  • Identify and apply relevant security best practices across DraftKings applications and infrastructure.

  • Test & improve defensive controls and security responses.

  • Triage information security alerts and take appropriate action when real threats are discovered.

  • Design and audit cloud security solutions to detect and prevent malware, breaches or loss of data

  • Coordinate with IT, site reliability, and engineering teams to track and ensure security findings get resolved in a timely manner.

  • Coordinate with IT, site reliability, and engineering teams to insure security solutions are being rolled and deployed appropriately

  • Research, design, and advocate new technologies, architectures, and security solutions that will protect DK’s cloud & onPrem systems

What you will bring:

  • Thorough understanding of core Information Security principles such as CIA triad, malware, vulnerabilities, exploits, attacks, firewalls, intrusion detection/prevention systems, etc.

  • Scripting or development experience in one of the following languages; Python, Ruby, C#/.Net,JS.  

  •  Extensive operations experience in either Linux or Windows operating systems.

  • Security experience in one or more of: JS, C, C#, C++, cryptography, reverse engineering, common web vulnerabilities (SQLi, XSS, CSRF), exploit development.

  • Experience working in cloud environments such as AWS or GCP

  • Experience in securing on-premise IT assets, office networks and IT infrastructure

  • Knowledge of Web app vulnerabilities (preferably OWASP Top 10). Web app penetration testing best practices using tools such as Nikto, Sqlmap, Burp Suite is a plus.

  • Familiarity with attack tools such as Cobalt strike

This position can sit in either the Boston office or remote; however, this work is to be performed entirely outside of Colorado. 


Who are we a good fit for? 

We love working with talented people but more than that, we seek out compassionate co-workers with a collaborative spirit. Our work moves quickly and we’re great at coming together to find creative solutions to some of tech’s most interesting problems. If that sounds good to you, join us. 

We are DraftKings.

We’re inspired by our shared passion for developing creative solutions to complex challenges and empowering the people around us to do their best work. We are industry leaders in the digital entertainment and technology space propelled by constant curiosity and diverse perspectives.

Our teams are fueled by innovation. We are looking ahead, building what’s next, and continuously reinventing the industry. We’re a publicly traded (NASDAQ: DKNG) technology company headquartered in Boston, with teams around the world and an expanding global presence.

Join Us!

We strive to create a place where all feel safe, empowered, engaged, championed, and inspired. DraftKings is proud to be an equal opportunity employer. This means we do not tolerate discrimination of any kind and are committed to providing equal employment opportunities regardless of your gender identity, race, nationality, religion, sexual orientation, status as a protected veteran, or status as an individual with a disability.

Ready to build what’s next? Apply now.

As a regulated gaming company, you may be required to obtain a gaming license issued by the appropriate state agency as a condition of employment.

Join Our Talent Community

Get discovered. Introduce yourself, and we’ll get in touch if there’s a role that seems like a good match.

Join now