Cloud Security Analyst: DevSecOps & IR (Hybrid) in London

Company Description

We’re OFX, a leading financial operations company providing businesses and accounting firms with real-time financial control and visibility to do business anywhere in the world. With an innovative platform and 24/7 human support, OFX automates and simplifies doing business across borders, reducing risk and eliminating routine operational tasks. Offering global business accounts, payments to 180 countries in 30+ currencies and currency risk management solutions to simplify global payments. OFX further enhances business operations by providing corporate cards with spend management, bill payments, vendor management, and integrations with popular accounting and HRIS software, to help achieve better business solutions so accounting firms and businesses thrive. Headquartered in Sydney, Australia, with offices globally, in the United States, Canada, United Kingdom, Ireland, New Zealand, Singapore and Hong Kong. OFX has been a trusted innovator in global money movement for over 25 years.

Purpose of role

As a Cyber Security Analyst within OFX, you will lead change within our global security landscape. Based in London, you will operate with a high degree of autonomy and initiative, as you will be the primary security point of contact for your time zone. You will play a key role in protecting and strengthening the organisation’s global technology environment. This position sits within a distributed security team headquartered in Australia and requires an individual who is highly independent, proactive, and comfortable operating across time zones. You will work hands-on across cloud infrastructure, identity systems, endpoint protection, detection platforms, and security monitoring capabilities to ensure strong operational security across the organisation. This role is suited to a technically capable cyber security analyst with prior hands-on experience, who enjoys solving complex security problems, investigating incidents, and working closely with engineering teams to embed security into everyday operations.

You will partner with DevOps, Platform Engineering, Fraud, and Infrastructure teams to integrate security into platforms, pipelines, and operational processes thereby enabling a mature DevSecOps and cloud-native security posture.

You will drive excellence across these areas:

• Cloud & Infrastructure Security: Secure multi-cloud environments (AWS/GCP) using least privilege principles and Cloud Native Application Protection (CNAPP).
• Operational Excellence: Manage a world-class suite of security tools including EDR/XDR, SASE, Identity and Access Management (IAM), and AI-driven email threat defence.
• Compliance & Risk: Utilize compliance automation platforms to maintain industry standards like ISO 27001, NIST, and DMARC/email authentication.
• Incident Response: Lead the analysis of security incidents, identifying root causes and driving remedial actions independently.
• Vulnerability & Third-Party Risk: Oversee vulnerability management and monitor third-party risk posture through automated scoring platforms.
• Metrics & Reporting: Build and maintain security monitors and dashboards to provide visibility to the global team.

Investigate and respond to security alerts and incidents across cloud platforms, identity systems, endpoints, email systems, and network infrastructure. Secure AI usage and use AI for security. Primary security point of contact for the region for incident management. Work collaboratively and flexibly with the global security team.

What you will be doing:

You will work to onboard new services, investigate problems and ensure OFX is operationally a centre of excellence for security. Ability to investigate on potential cyber issues, attention to details. Make sure we are making inroads against world leading security benchmarks across all platforms. Furthermore, create security benchmarks that work for us. Be a supportive team member, upskilling the cross-functional team to showcase good practice delivery, turning strategy into action. You must have excellent communication skills, collaboratively working across technical and business teams. Will require an inquisitive and growth mindset, with the ability to identify opportunities for improvement, and suggest new ways of working, and spearhead their adoption. Independently and collaboratively solve problems, drive a team culture and contribute towards best-in-class security practices. Open to new ideas, adaptive and quickly learn.

Qualifications

What you will bring:

• Background of analyst experience in cyber domains.
• A solid understanding and hands-on experience in cloud security primarily in AWS.
• Analytical mindset of problem identification and solving. Ability to deep dive to identify the core root cause of issues.
• Adaptive mindset to work on different security systems and setup. Document policies, procedures, guidelines and their application.
• Proactively address any blockers to the team & help security and Tech teams in development of requirements.
• Extensive Knowledge of several key security practices in access control, application security, network security, cloud security and protection of endpoints.
• Maintain knowledge of the latest cloud security threats and overall threat environment.
• Learn on the job and keep an open eye on the industry and external environment.

Additional Information

What it’s like working at OFX

We’re OFXers because we want to make a difference. We see challenges as opportunities and we’re not afraid to roll up our sleeves to get stuff done. We’re committed to making things easier for our clients, pushing boundaries and continuing to move with the times so that we can continue to inspire confidence every day and through every transaction. We operate as one team, cross-functionally and globally, to drive outcomes that deliver excellence for our customers. We’re curious self-starters who love learning and sharing our knowledge with others. We embrace change and use our initiative and resilience to overcome challenges.

Always keep learning. We offer a wide range of learning and career development opportunities to help every OFXer build their capacity and career, with leadership training, secondments, internal mobility and access to a large library of online learning.

Make a difference. Through our Make a Difference program, we encourage OFXers to give back to causes and communities that are important to them. We celebrate this with an annual volunteer day, which OFXers can use together or individually, as well as matched giving and the opportunity to nominate charity of choice every quarter.

Reward and recognition. We recognise a job well done. OFXers are encouraged to celebrate their peers’ effort, technical expertise or support through a range of global and regional channels and awards, including quarterly and annual awards, milestones and shout outs.

Showing our social side. Our Good Vibes employee-led committees around the globe organize events to help keep our employees engaged inside and outside the office. Whether it’s a wellbeing activity, end of year celebration, or a monthly team get-together, our team wants you to feel welcome!

Benefits that mean something. We offer a range of fantastic benefits, including health insurance, primary and secondary gender neutral carer parental leave (16 weeks) or birthday leave, you’ll feel well-supported at OFX.

A great work environment. Enjoy work-life balance and flexibility with our hybrid work model, in an inclusive, diverse and non-hierarchal culture.

At OFX, we are committed to fostering a diverse, inclusive and accessible workplace where we value, respect, and encourage our people to be their authentic selves. With an employee base as diverse as the clients we serve, we know that fostering an inclusive workplace is fundamental to our continued success. If you require accommodation for any portion of the recruitment and hiring process, please email us at . We encourage you to apply if this role aligns with your career aspirations.