Security Operations Analyst

About us

We're a global leader in account-to-account payments, making it easy for merchants to collect both recurring and one-off payments directly from customers' bank accounts. Our global payments network and technology platform take the pain out of getting paid for 80,000 businesses worldwide, from multinational corporations to small businesses. Each year we process US$30 billion of payments across more than 30 countries. We're headquartered in the UK, with additional offices in Australia, France and the United States. 

Intro to Security and Privacy Engineering 

Our Security and Privacy Engineering team is here to make sure that we remain a secure and trusted partner for all of these businesses as we grow. We believe security and privacy works best when it is part of the product, so we focus on inspiring autonomous teams to take shared responsibility for security and privacy.

The role

As a Security Operations Analyst you will provide subject matter expertise on our security detection and response capabilities. We run a small, collaborative team, so you will be involved in the end-to-end process of Security Operations; from defining our security use cases through to incident response. 

Your background will ideally be in security operations. In any case, you will be experienced using SIEM tools to develop security monitoring cases and writing scripts to automate tasks and will have previous experience in incident response and threat management.

We want people who can help make security part of our day-to-day operations, so you will be someone who enjoys working across team, function and group to improve the security posture of an organisation.

In this role you will:

• Work closely with the Security Operations manager to ensure we take a data driven approach to presenting our security posture
• Ensure that we perform scheduled vulnerability assessments, and work with our IT and infrastructure teams to ensure that we maintain agreed configuration standards
• Analyse logs from multiple sources (eg: IDS, endpoints, email) to identify and investigate security events and anomalies
• Work closely with other Security Operations Engineers to review and onboard security tools as we identify new requirements
• Run day-to-day security operations activities. This could be anything from responding to one of our users who was concerned about a suspicious email, to preparing a threat report or responding to a security incident
• Provide technical support for on call outside normal business hours (when required)

Desired skills

• Experience using SIEM (ideally Splunk) tools to develop security monitoring cases and writing scripts to automate tasks
• Previous incident response experience 
• Ability in using EDR or IDS/IPS tools
• Good fundamental knowledge on information security 
• Knowledge of cloud security best practices 
• Excellent written and verbal communications skills to describe security event details and technical analysis with audiences within the cybersecurity organisation and other technology groups

What we have to offer

Among other things:

• Focus on your growth and development: regular discussions with your manager about your personal goals, feedback, coaching, learning and conference budget.
• A clear career progression: opportunities for growth and leadership aligned to our competencies framework.
• Ownership and autonomy: we give people problems to solve rather than specifications to implement, end to end ownership (deciding on the solution, implementing it, releasing it, maintaining it)
• Good work-life balance

Life at GoCardless

When it comes to culture, we're proud of what we call the 'GC magic'. It's primarily defined by our values: Start With Why, Be Humble, Act with Integrity, and Care Deeply. They've been our bedrock since day one, and they continue to be one of the key factors of our success, and the reason we love showing up to work every day. 

Because we're now delivering on our important, and ambitious vision to become the world's account-to-account payment network, we're working at pace. To help clear the path to success - so any obstacles and blockers don't slow us down - we've introduced our own set of operating principles, which live alongside our values. They're designed to help us successfully navigate our continued growth by helping us work together better. They provide guideposts around some of the key areas of how we operate so things are smoother, easier and ultimately lead to better outcomes. Read more about our values and operating principles here.

There's lots more to the magic. We view Diversity and inclusion as a business imperative, so we have a leader whose role it is to ensure we create an inclusive workplace where people from all backgrounds can thrive, and where people from all walks of life want to join us. We also have high engagement with our GeeCee-led 'employee resource groups' (such as BEAM, Inspiring, Pride, Mindful and Access) that are supported and sponsored by members of our Exec team. You can view our latest Gender Pay Gap report here. 

We've also rolled out our 'Adaptive Working' and 'Work Away' schemes. Adaptive Working allows you to work flexibly, and in a way that fits around your lifestyle, whilst still ensuring our teams can collaborate effectively and get together and socialise.  Work Away gives the flexibility to work away from your normal country of residence for up to 90 days in any 12 month period. 

We also offer enhanced parental leave, pension packages, and you'll receive equity. Having this 'buy in' is a vital part of building a successful business where everybody - regardless of their role - can make a valuable contribution. 

There's also our legendary 'GC Fridays'. They're four additional all-company days off every year, giving GeeCees a chance to switch off and relax, as a token of thanks for everyone's hard work and commitment. 

Find out more about Life at GoCardless via Twitter, Instagram and LinkedIn.