Security Solutions Architect - IAM

We operate at scale. As part of Flutter Entertainment, we play an essential role in the Group's goal of becoming the global leader in online sports betting and iGaming, developing innovative products and platforms for over 14 million monthly customers worldwide.

We are serious about Tech. We are problem-solvers with big ambitions, keeping a people-first mindset at the core of our work. We prioritize flexibility as we strive to deliver the best technological products and tackle the greatest industry challenges.

Recognizing that everyone brings their own strengths, backgrounds and new perspectives, we empower you to be yourself. That uniqueness shapes the culture of belonging we are so proud of.

The role 

Flutter Global Cyber team is seeking an IAM Security Solutions Architect to contribute to the design, development and implementation of IAM capabilities across the Flutter ecosystem. IAM at Flutter is going through a period of change, with a new group-wide strategy being agreed and a technical roadmap for uplifting the services to support the strategy in development.

The Security Solutions Architect will work with a variety of stakeholders – including brand security and engineering teams, workplace technology, vendor technical account managers and technical consultancies – in supporting the delivery of the strategy.

The successful candidate will have a background with IAM, either in security architecture or security engineering, or through end user computing delivery. Plus, a proven track record of working on enterprise-scale IAM or C-IAM projects, in engineering or architecture roles. The candidate will be able to design and document secure and scalable solutions across IAM which are tailored to the individual brands’ needs.

What You'll be Doing
•    Support the IAM architectural roadmap, working with security and enterprise architecture to maintain alignment to the broader enterprise security and technology strategies.
•    Design end-to-end IAM solutions covering identity governance and administration (IGA), privileged access management (PAM) and access management.
•    Establish and maintain architecture patterns, standards, and reference designs for IAM across cloud, hybrid, and on-premises environments.
•    Architect and oversee the implementation of authentication protocols including OAuth 2.0, OpenID Connect (OIDC), SAML 2.0, and FIDO2/WebAuthn.
•    Drive the adoption of multi-factor authentication (MFA), single sign-on (SSO), and password-less authentication capabilities, enhancing and extending the conditional access implementation.
•    Collaborate with peer functions such as Workplace Technology, Enterprise Architecture, Security Architecture as and when required.
•    Engage with relevant teams to ensure IAM solutions comply with relevant regulatory and control frameworks (including GDPR, SOX, PCI-DSS, NIST and ISO 27001).
•    Support the analysis & delivery of role-based access control (RBAC), attribute-based access control (ABAC), and entitlement management frameworks.
•    Support audit and assurance activities, producing architectural documentation and evidence as required.
•    Act as the subject matter expert (SME) for IAM solutions, advising stakeholders and product teams on identity-related risks, capabilities and mitigations.
•    Bring a “customer first” mindset to ensure that user experience remains a priority in the delivery of IAM services.
•    Evaluate and support recommendations for IAM vendor solutions and tooling, contributing to procurement and commercial decisions.
•    Act as a coach or mentor to junior colleagues to further IAM within Flutter

What You'll Bring  
•    An understanding of federation protocols: SAML 2.0, OAuth 2.0, OIDC, SCIM, LDAP, Kerberos.
•    Strong understanding of zero trust network access (ZTNA) and its application to identity architectures.
•    Experience designing IAM solutions across multi-cloud environments (AWS, Azure, GCP).
•    An understanding of API security patterns, including OAuth token management and API gateway integration.
•    Familiarity with Infrastructure as Code (IaC) tooling (e.g., Terraform, Ansible) as applied to identity configuration.
•    An understanding of PKI, certificate lifecycle management, and secrets management best practices.
•    Architecture experience - ideally with a grounding in a recognised framework such as TOGAF, SABSA, or Zachman.
•    Demonstrable experience working within complex, large-scale enterprise environments with diverse technology stacks.
•    Strong understanding of cloud-native architecture patterns, microservices, and containerisation (Kubernetes, Docker).
 
Essential
•    Degree in Computer Science, Information Security, or a related discipline - or equivalent demonstrable experience.
•    7+ years in identity and access management or information security roles, with at least 3 years in an architectural or engineering capacity.
Desirable
•    Relevant professional certifications such as:
•    Certified Information Systems Security Professional (CISSP)
•    The Open Group Architecture Framework (TOGAF)
•    Experience in regulated industries (financial services, gaming, healthcare).

Behaviours & Competencies
•    Strategic thinking - ability to connect IAM decisions to broader business and security outcomes.
•    Communication - capable of conveying complex technical concepts clearly to both technical and non-technical audiences.
•    Ownership - takes accountability for architectural decisions and their outcomes.
•    Collaboration - builds effective working relationships across security, engineering, product, and compliance teams.
•    Continuous learning – curiosity to remain current within the rapidly evolving identity governance and threat landscape ecosystem.

This is what you should have. What do we have, you ask? Well...you can check our    amazing perks @ benefits    right    here   !

So ... Are you in? 

Equal opportunities

At Blip, we are committed to creating a diverse and inclusive workplace. We strongly encourage people from all backgrounds,    ways of thinking, and working to apply.
We are committed to including everyone    regardless of their race, disability, age, gender identity, sexual orientation, and religion. 
Everyone brings different perspectives and experiences; you don’t have to meet all the requirements listed to apply for this role.

If you need any adjustments to apply for the position and to ensure this role aligns with your needs, please send an email to  accommodations@blip.pt .

We will only respond to inquiries related to disabilities.