Ebury is a hyper-growth FinTech firm, named in as one of the top 15 European Fintechs to work for by AltFi.
We offer a range of products including FX risk management, trade finance, currency accounts, international payments and API integration.
Senior Security Operations AnalystMadrid Office - Hybrid: 4 days in the office, 1 day working from homeAs a Senior Security Operations Analyst, you will work with senior team members to understand threats and risks, apply security measures, and leverage your advanced knowledge of security tools and cloud environments (AWS and GCP).
This hands-on role involves analyzing new requirements to support Ebury's global expansion and meet regulatory changes.Key Responsibilities:1.
Security Incident Management and Response: Escalate and manage security incidents/alerts through Ebury's SIEM toolConduct mail headers analysis, antivirus/EDR alerts investigation, and intrusion detection systems alerts investigations for desktop and cloud environmentsPerform advanced log monitoring on cloud and desktop/local network environmentsAssist with employee security concerns and provide advanced reporting 2.
Access Management and Policy Implementation: Assist with access policies procedures, including User Access Reviews (UAR)Maintain and develop Role-Based Access Control (RBAC) and RACI matrix for different systemsCollaborate on security exceptions review and approval with the Information Security Manager 3.
Security Operations and Project Support: Assist with internal phishing campaigns and Ebury's Security Champions programCollaborate on security projects using Agile methodologiesDevelop threat modelling on Ebury's SIEMAnalyse CVEs and conduct security assessments as part of vulnerability managementAssist with Security Operations OKRs and KPI metrics 4.
Cloud Security Management: Implement and maintain security controls within AWS and GCP environmentsConduct regular security assessments of cloud infrastructure and applicationsEnsure consistent security measures across both cloud platforms 5.
Compliance and Reporting: Ensure compliance with relevant financial industry regulations and standardsPrepare security metrics and reports for management and stakeholdersContribute to security audits and assessments 6.
Team Collaboration and Support: Provide local and remote assistance to users on security mattersLiaise and advise on security risk topics as requiredCollaborate with international team members and the IT department on new initiatives Qualifications and Skills: 5+ years of experience as a security operations analystStrong knowledge in the following areas (2-3 years expertise): Security Incident Management and ResponseLog Monitoring / SIEMCloud perimeter security (AWS and GCP)Desktop and physical network protectionMail analysisIDS / IPSAuthentication managementVulnerability Management Proficiency in incident management (CSIRT) and forensic analysisExperience with security information and event management (SIEM) toolsFamiliarity with financial industry security standards (e.g., PCI DSS, ISO )Good understanding of business and technical information security concepts based on ISO standardKnowledge of data protection principles and implementationExperience in the financial sector is a plusRelevant security certifications (e.g., GCIH, GCIA) are valued Personal Skills: Hands-on security practitionerStrong analytical and problem-solving skillsTeam playerExcellent communication skillsFluency in English and Spanish Attention to detail and accuracyHighest level of ethical behaviour What We Offer: Competitive salary and benefits packageOpportunity to work with cutting-edge fintech technologies in a global, multi-cloud environmentProfessional development and training opportunitiesCollaborative and innovative work environmentPotential for international travel and cross-office collaboration #LI-CD1
