Information Security Analyst

Company Description

Checkout.com is one of the most exciting fintechs in the world. Our mission is to enable businesses and their communities to thrive in the digital economy. We’re the strategic payments partner for some of the best known fast-moving brands globally such as Wise, Hut Group, Sony Electronics, Homebase, Henkel, Klarna and many others. Purpose-built with performance and scalability in mind, our flexible cloud-based payments platform helps global enterprises launch new products and create experiences customers love. And it's not just what we build that makes us different. It's how.

We empower passionate problem-solvers to collaborate, innovate and do their best work. That’s why we’re on the Forbes Cloud 100 list and a Great Place to Work accredited company. And we’re just getting started. We’re building diverse and inclusive teams around the world — because that’s how we create even better experiences for our merchants and our partners. And we need your help. Join us to build the digital economy of tomorrow.

Job Description

Information Security Analyst at Checkout.com:

The Information Security team is spread out across Mauritius, United Kingdom and the United States. A career within the Security Operation Team, will provide you with the opportunity to develop and support our security technologies and services across the entire global and local Checkout.com networks. You'll focus on being at the forefront of designing, developing, and implementing information technology including software and networks that enhance security of internal information and protect our firm's intellectual assets.

Our Information Security function identifies technology trends and opportunities to build, integrate, and operate technologies throughout the Checkout.com environment. The goal of this team is to lead secure development and operations of cloud enterprise solutions, platforms and technologies that enable Checkout's professionals to work more efficiently and more securely while delivering the highest level of service to merchants.

What you'll be doing:

• Assist in the operation and monitoring of assurance controls and security intelligence.
• Investigate observations found during routine analysis of activities and own the remediation liaising with the wider business where needed to ensure resolution.
• Become a subject matter expert working with the IT and product teams to ensure security remains baked in from the outset.
• Investigate security events and incidents and work from triage to remediation.
• Conducting proactive research to analyse security weaknesses and recommend appropriate strategies to mitigate risk.
• Assist with building and implementing tools to automate security monitoring and tasks.
• Assist with achieving and maintaining ongoing PCI DSS / ISO2700x / SOC 1 & 2 compliancy across the business.
• Conduct internal audits across business units to assess ongoing compliance and own any identified issues through to remediation.
• Participate in development and implementation of the appropriate and effective controls to mitigate identified threats and risks.
• Work closely with the wider CKO teams (IT, Engineering etc) to ensure strong Information security governance and information assurance is in place securing the confidentiality, availability, and integrity of the business.
• Collaborate with passionate technologists across multiple disciplines to ensure security and compliance requirements.
• Contribute ideas and solutions to a fast paced, growing, and evolving team.
• Full end to end testing across network penetration, web and mobile application testing, API testing, source code reviews, threat analysis.
• Lead third party assessments and assist teams in remediating identified vulnerabilities.
• Wireless network and social engineering assessments
• Red team, purple team assessments, threat modelling and security architecture reviews

Qualifications

About you:

• Proven experience in a Cyber Security or IT Security role.
• Advanced knowledge of information security standards, practices, and methodologies as well as advanced analytical and problem-solving skills.
• Advanced understanding of SIEM solutions.
• Experience of security controls and toolsets such as firewalls, web proxies,IDS, WAF, endpoint protection
• Understanding of vulnerability management including network and web application testing, application security vulnerabilities.
• Self-motivated, able to deliver consistent results through problem solving
• Working knowledge of; PCI DSS, GDPR, ISO27001.
• Application and data security in a multi-platform environment (Windows, Linux, SQL, Cloud).
• Exhibit ownership, follow through, initiative, awareness and effective communication with peers and the ability to speak of details of the identified issue to both the business and technical teams.
• Good knowledge of network infrastructure design & public cloud architecture.
• Self-motivated, able to deliver consistent results through problem solving.
• Endpoint security technologies and controls such as encryption, MDM, DLP, IDS across Windows, MAC OS and Linux (Cylance, Google Context Aware, AWS KMS, AWS Secrets Manager, AWS GuardDuty)
• Autonomous, able to manage multiple projects simultaneously with minimal guidance.
• Network infrastructure design & public cloud architecture (AWS)
• Understanding of Red team, purple team assessments, threat modelling and conduct security architecture reviews.
• Fluent in English.

Additional Information

Apply without meeting all requirements statement 

If you don't meet all the requirements but think you might still be right for the role, please apply anyway. We're always keen to speak to people who connect with our mission and values.

We believe in equal opportunities

We work as one team. Wherever you come from. However you identify. And whichever payment method you use. 

Our clients come from all over the world — and so do we. Hiring hard-working people and giving them a community to thrive in is critical to our success.

When you join our team, we’ll empower you to unlock your potential so you can do your best work. We’d love to hear how you think you could make a difference here with us. 

We want to set you up for success and make our process as accessible as possible. So let us know in your application, or tell your recruiter directly, if you need anything to make your experience or working environment more comfortable. We’ll be happy to support you.

Take a peek inside life at Checkout.com via

• Our Culture video https://youtu.be/BEwnpHuadSw
• Our careers page https://www.checkout.com/careers
• Our LinkedIn Life pages bit.ly/3OaoN1U  
• Our Instagram https://www.instagram.com/checkout_com/