About us

We're a global leader in account-to-account payments, making it easy for merchants to collect both recurring and one-off payments directly from customers' bank accounts. Our global payments network and technology platform take the pain out of getting paid for 80,000 businesses worldwide, from multinational corporations to small businesses. Each year we process US$30 billion of payments across more than 30 countries. We're headquartered in the UK, with additional offices in Australia, France, Latvia and the United States. 

Intro to Security and Privacy Engineering 

Our Security and Privacy Engineering team is here to make sure that we remain a secure and trusted partner for all of these businesses as we grow. We believe security and privacy works best when it is part of the product, so we focus on inspiring autonomous teams to take shared responsibility for security and privacy.

The role

As a Cloud Security Operations Analyst you will participate in the design, development and implementation of cloud security architecture, strategy and standards.

You provide subject matter expertise on our security detection and response capabilities, you will identify, evaluate and communicate cloud-related risks and vulnerabilities and recommended mitigations.

We run a small, collaborative team, so you will be involved in the end-to-end process of security operations; from defining our security use cases through to incident response. 

Your background will ideally be in cloud security operations or as a SOC analyst.  In any case, you will be experienced using cloud-native services and environments (GKE, GCS) and performing incident response in the cloud.

We want people who can help make security part of our day-to-day operations, so you will be someone who enjoys working across team, function and group to improve the security posture of an organisation.

In this role you will:

  • Work closely with the security operations manager to ensure we take a data driven approach to presenting our cloud security posture
  • Take a prominent role in reviewing the existing cloud security measures and processes, ensure the appropriate tooling, automation and operational processes and models are in place
  • Recommend security configuration standards and best practices for cloud services (Google and AWS)
  • Create actionable alerts in SIEM based on received cloud log events
  • Analyse logs from multiple sources (eg: IDS, endpoints, email) to identify and investigate security events and anomalies
  • Work closely with other security operations engineers to review and onboard security tools as we identify new requirements
  • Run day-to-day security operations activities. This could be anything from responding to one of our users who was concerned about a suspicious email, to preparing a threat report or responding to a security incident
  • Prove the ability to work creatively and analytically in a problem-solving environment

Desired skills

  • Knowledge of recommended cloud security controls, fundamentals and best practices
  • Experience using SIEM tools (ideally Splunk) to develop security monitoring cases and writing scripts to automate tasks
  • Ability in using EDR or IDS/IPS tools
  • Previous incident response experience in cloud environments
  • Good fundamental knowledge on information security 
  • Excellent written and verbal communications skills to describe security event details and technical analysis with audiences within the cybersecurity organisation and other technology groups

What we have to offer:

Among other things:

  • Focus on your growth and development: regular discussions with your manager about your personal goals, feedback, coaching, learning and conference budget.
  • A clear career progression: opportunities for growth and leadership aligned to our competencies framework.
  • Ownership and freedom: we give people problems to solve rather than specifications to implement, end to end ownership (deciding on the solution, implementing it, releasing it, maintaining it)
  • Good work-life balance

Life at GoCardless

When it comes to culture, we're proud of what we call the 'GC magic'. It's primarily defined by our values: Start With Why, Be Humble, Act with Integrity, and Care Deeply. They've been our bedrock since day one, and they continue to be one of the key factors of our success, and the reason we love showing up to work every day. 

Because we're now delivering on our important, and ambitious vision to become the world's bank payment network, we're working at pace. To help clear the path to success - so any obstacles and blockers don't slow us down - we've introduced our own set of operating principles, which live alongside our values. They're designed to help us successfully navigate our continued growth by helping us work together better. They provide guideposts around some of the key areas of how we operate so things are smoother, easier and ultimately lead to better outcomes. Read more about our values and operating principles here.

There's lots more to the magic. We view Diversity and inclusion as a business imperative, so we have a leader whose role it is to ensure we create an inclusive workplace where people from all backgrounds can thrive, and where people from all walks of life want to join us. We also have high engagement with our GeeCee-led 'employee resource groups' (such as BEAM, Inspiring, Pride, Mindful and Access) that are supported and sponsored by members of our Exec team. You can view our latest Gender Pay Gap report here. 

We've also rolled out our 'Adaptive Working' and 'Work Away' schemes. Adaptive Working allows you to work flexibly, and in a way that fits around your lifestyle, whilst still ensuring our teams can collaborate effectively and get together and socialise.  Work Away gives the flexibility to work away from your normal country of residence for up to 90 days in any 12 month period. 

You'll receive equity in the company. Having this 'buy in' is a vital part of building a successful business where everybody - regardless of their role - can make a valuable contribution. 

There's also our legendary 'GC Fridays'. They're four additional all-company days off every year, giving GeeCees a chance to switch off and relax, as a token of thanks for everyone's hard work and commitment. 

Find out more about Life at GoCardless via Twitter, Instagram and LinkedIn

Apply for this Job

* Required
resume chosen  
(File types: pdf, doc, docx, txt, rtf)
cover_letter chosen  
(File types: pdf, doc, docx, txt, rtf)


UNITED KINGDOM - Demographic Questions

We're committed to making GoCardless a place where everybody can thrive regardless of their background. Championing a diverse, inclusive workplace underpins our mission to build the world’s first global network for recurring payments.

We continually measure our efforts to ensure we're on track, and that's where you can help. The questions below are optional but we'd appreciate you answering them. It's completely anonymous so your answers CANNOT be linked to you individually. They also don't have any impact on the hiring decisions we make.

Want to find out more about D&I at GC? Take a look  here.

Which gender do you identify as? (Select one)





What race/ethnicity do you identify as? (Select one)







Which of the following best describes your sexual orientation? (Select one)









How old are you? (Select one)







What is your highest level of education? (Select one)









Do you consider yourself disabled (i.e. have a condition that impacts your day to day life for more than 12 months)? (Select one)



Do you consider yourself to be neurodiverse (i.e. dyslexia/ADHD/etc)? (Select one)



Is your gender identity the same as the sex you were assigned at birth? (Select one)