IT Security Analyst

How would you feel about taking an active part securing a global leader in online multi-asset trading services, currency data, corporate payments and FX services?

OANDA is looking for a versatile IT Security Analyst to help improve their overall security by joining the growing Security Team.

This is a hands-on position: responding directly to the CISO, you’ll have the opportunity to suggest, evaluate, take ownership, implement, configure and maintain numerous security solutions; investigate security incidents, perform application security review, security assessments and other activities that can help improve OANDA’s security posture.

Do you know any other way to make our environment more secure?  At OANDA you'll have the opportunity to put it in practice.

Who we are

OANDA Corporation is an innovator in computer engineering and financial modeling that provides online trading and currency information services to everyone, from individuals to large corporations; portfolio managers to financial institutions.  We are a market maker and a trusted source for currency data with one of the world's largest historical, high frequency, filtered currency databases.  We continue to experience tremendous growth since our start in 1996, providing unprecedented opportunities for our employees to redefine the online trading market with new products we create.

In this position you will:

• Help define Security processes and standards
• Perform Security Assessments
• Drive the Vulnerability Management process
• Manage Endpoint Protection
• Respond to security incidents and perform investigations
• Spread Security Awareness across the company

Additionally, you may also be required to:

• Find opportunities for automating security
• Assist in audit and compliance activities
• Participate in evaluation, implementation, configuration, improvement and troubleshooting of security tools/processes
• Perform internal pen-tests
• Drive the Vulnerability Disclosure Program

You fit this position if you have:

• Excellent communication (English)
• Deep knowledge in at least two Operating Systems (Windows, Linux and macOS)
• Excellent understanding of network, web, authentication, cryptography and security protocols.  Including tools used to perform their analysis
• Exposure to scripting languages (Bash, Python, PowerShell)
• Good knowledge in general security principles and best practices; and how to leverage them in a global, financial and regulated environment

We also appreciate it if you have:

• Experience in improving security of software development process
• Working experience with compliance standards and frameworks such as CIS, NIST, PCI-DSS, GDPR, SOC2 and ISO27001
• Certifications with emphasis on Information Security such as CIPP, CISSP, CompTIA Security+ and CRISC

OANDA Global Corporation is a diverse and global team with offices around the world.  We value the unique skills and experiences each individual brings and we are committed to creating and sustaining a relaxed work environment in which all individuals are treated with dignity and respect, and reflects the diversity of the community in which we operate. We provide an inclusive and accessible environment for everyone.  Candidates selected for an interview will be contacted directly.  If you require accommodation during the recruitment and selection process, please let us know.  We will work with you to provide as seamless a recruitment experience as possible.