Staff Application Security Engineer

Location:New York


FanDuel Group (“FanDuel") is an innovative sports-tech entertainment company that is changing the way consumers engage with their favorite sports, teams, and leagues. The premier gaming destination in the United States, FanDuel consists of a portfolio of leading brands across gaming, sports betting, daily fantasy sports, advance-deposit wagering, and TV/media.

FanDuel has a presence across all 50 states with approximately 17 million customers and 28 retail locations. FanDuel is based in New York with offices in New Jersey , Georgia, California, Oregon, Canada and Scotland.

Its networks FanDuel TV and FanDuel+ are broadly distributed on linear cable television and through its relationships with leading direct-to-consumer over-the-top platforms.

FanDuel Group is a subsidiary of Flutter Entertainment plc, the world's largest sports betting and gaming operator with a portfolio of globally recognized brands and traded on the New York Stock Exchange (NYSE: FLUT).


At FanDuel, we give fans a new and innovative way to interact with their favorite games, sports and teams. We’re dedicated to building a winning team and we pride ourselves on being able to make every moment mean more, especially when it comes to your career. So, what does “winning” look like at FanDuel? It’s recognition for your hard-earned results, a culture that brings out your best work—and a roster full of talented coworkers. Make no mistake, we are here to win, but we believe in winning right. That means we’ll never compromise when it comes to looking out for our teammates. From creatives professionals to cutting edge technology innovators, FanDuel offers a wide range of career opportunities, best in class benefits, and the tools to explore and grow into your best selves. At FanDuel, our principle of “We Are One Team” runs through all our offices across the globe, and you can expect to be a part of an exciting company with many opportunities to grow and be successful.

Our roster has an opening with your name on it

The Staff Application Security Engineer holds a pivotal role in steering the application security landscape and fostering secure DevOps methodologies across all FanDuel products and software ecosystems. Collaborating closely with diverse teams, this engineer spearheads the establishment of secure software development lifecycle (SDLC) practices and contributes to shaping the paradigm of exemplary security practices. With a primary focus on bolstering applications, this role plays a vital part in cultivating a culture of agile and dependable software solutions across the organization, ensuring that our applications undergo thorough security assessments before being deployed to production. Working hand in hand with development and operations teams, the Staff Application Security Engineer is instrumental in delivering top-tier applications that empower our customers with unparalleled winning experiences. 

Everyone on our team has a part to play

  • Lead the evolution of a cutting-edge security engineering organization that drives the agile development of secure and reliable applications and products, setting the standard for industry best practices.
  • Provide strategic guidance on security initiatives across the organization, influencing decision-making processes and ensuring alignment with overarching security objectives.
  • Collaborate with technology stakeholders to define and implement comprehensive metrics that gauge security proficiency across all major technology teams, fostering a culture of continuous improvement and accountability.
  • Champion the development of innovative tools and automation frameworks to enhance the security posture of applications, streamlining security processes and enabling rapid security gains by teams.
  • Drive the development and implementation of security tools that seamlessly integrate into the Secure Development Lifecycle, promoting adherence to secure coding practices and standards.
  • Ensure thorough documentation, maintenance, and archival of processes associated with critical systems, facilitating transparency and accountability in security practices.
  • Lead collaborative efforts with development and operations teams to establish and refine standards for application security, fostering a culture of shared responsibility and ownership.
  • Guide and mentor a team of enthusiastic Application Security Engineers, providing guidance and expertise to help them grow and develop their skills in designing and implementing secure software solutions.
  • Proficient in effectively disseminating knowledge through various channels, including public speaking engagements, blog posts and written documentation.
  • Undertake additional responsibilities as necessary to support the strategic objectives and operational needs of the organization.


What we're looking for in our next teammate

  • Proficient experience in software development with expertise in languages such as Python, JavaScript, or Java, enabling the implementation of secure coding practices and the identification of vulnerabilities within codebases.
  • Extensive experience with Static/Dynamic Application Security Testing (SAST/DAST) methodologies and tools, empowering thorough security evaluations and the identification of security weaknesses in applications.
  • Proficiency in automation tools such as Terraform, Puppet or CloudFormation, enabling the automation of security processes and the implementation of scalable security solutions.
  • Hands-on experience with CI/CD pipelines and the ability to assess them from a security perspective, including the seamless integration of security tools into the pipeline to ensure continuous security validation.
  • Extensive experience working with cloud-based infrastructure and technologies, preferably AWS, enabling the design and implementation of secure cloud environments.
  • Familiarity with a range of security tools, including Nessus, Burp, and web application firewalls, facilitating comprehensive security assessments and the implementation of proactive security measures.
  • Proven ability to communicate and influence in a highly distributed environment, providing expert guidance and direction on security matters to development, systems, support, and quality assurance teams, fostering a culture of security awareness and collaboration.
  • Exceptional verbal and written communication skills, facilitating effective communication of complex security concepts and recommendations to diverse audiences.


We treat our team right

From our many opportunities for professional development to our generous insurance and paid leave policies, we’re committed to making sure our employees get as much out of FanDuel as we ask them to give. Competitive compensation is just the beginning. As part of our team, you can expect:

  • An exciting and fun environment committed to driving real growth
  • Opportunities to build really cool products that fans love
  • Mentorship and professional development resources to help you refine your game
  • Be well, save well and live well - with FanDuel Total Rewards your benefits are one highlight reel after another 

FanDuel is an equal opportunities employer and we believe, as one of our principal states, “We Are One Team!”  We are committed to equal employment opportunity regardless of race, color, ethnicity, ancestry, religion, creed, sex, national origin, sexual orientation, age, citizenship status, marital status, disability, gender identity, gender expression, Veteran status, or another other characteristic protected by state, local or federal law. We believe FanDuel is strongest and best able to compete if all employees feel valued, respected, and included.  We want our team to include diverse individuals because diversity of thought, diversity of perspectives, and diversity of experiences leads to better performance.  Having a diverse and inclusive workforce is a core value that we believe makes FanDuel stronger and more competitive as One Team!

The applicable salary range for this position is $176,000 - $220,000, which is dependent on a variety of factors including relevant experience, location, business needs and market demand. This role may offer the following benefits: medical, vision, and dental insurance; life insurance; disability insurance; a 401(k) matching program; among other employee benefits. This role may also be eligible for short-term or long-term incentive compensation, including, but not limited to, cash bonuses and stock program participation. This role includes paid personal time off and 14 paid company holidays. FanDuel offers paid sick time in accordance with all applicable state and federal laws.