Analyst 1, InfoSec Analyst
Checkout.com, Mauritius

We're Checkout.com
Checkout.comis one of the most exciting and valuable fintechs in the world, with our Series D taking our valuation to $40 billion. Our mission is to enable businesses and their communities to thrive in the digital economy. We’re the strategic payments partner for some of the best known fast-moving brands globally such as Patreon, Binance, SHEIN, Grab, Henkel, Wise, Sony Electronics and many others. Purpose-built with performance and scalability in mind, our flexible cloud-based payments platform helps global enterprises launch new products and create experiences customers love. And it's not just what we build that makes us different. It's how.
We empower passionate problem-solvers to collaborate, innovate and do their best work. That’s why we’re number 9 on the Forbes Cloud 100 list and on Glassdoor’s list of Top 10 fintechs to work for. And we’re just getting started. We’re building diverse and inclusive teams around the world because that’s how we create even better experiences for our merchants and our partners. And we need your help. So, join us to build tomorrow, today.
Information Security Analyst at Checkout.com:
Checkout.com is actively looking for Information Security Analysts to join the Information Security team.
In this role you will provide support and implementation of security controls to protect Checkout customers, systems, assets and organisational threats. This is a fast growing team with real opportunities to grow your Cyber/InfoSec career.
Joining a high-growth global FinTech Company and collaborating with various enthusiastic and excellence-driven people, you will gain exposure to a fast-scaling Cloud environment where you will be able to learn while making a real impact. ABOUT YOU:

• Tried experience in a Cyber Security or IT Security role.
• Sophisticated knowledge of information security standards, practices, and methodologies as well as sophisticated analytical and problem-solving skills.
• Sophisticated understanding of SIEM tools.
• Experience of security controls and toolsets such as firewalls, web proxies, IDS, WAF, endpoint protection
• Understanding of vulnerability management including network and web application testing, application security vulnerabilities.
• Self-motivated, able to deliver consistent results through problem solving
• Solid understanding of; PCI DSS, GDPR, ISO27001.
• Application and data security in a multi-platform environment (Windows, Linux, SQL, Couchbase, Cloud).
• Microsoft Server 2016, Windows 10, including active directory, MDM and DLP.
• Exhibit ownership, follow through, initiative, awareness and effective communication with peers and the ability to speak of details of the identified issue to both the business and technical teams.
• Good knowledge of network infrastructure design amp; public cloud architecture.
• Self-motivated, able to deliver consistent results through problem solving.
• Endpoint security technologies and controls such as encryption, MDM, DLP, IDS across Windows, MAC IOS and Linux (Airwatch, Cylance, Google Context Aware, AWM KMS, AWS Secrets Manager, AWS GuardDuty)
• Autonomous, able to lead multiple projects simultaneously with minimal guidance.
• Network infrastructure design amp; public cloud architecture (AWS)
• Fluent in English.

WHAT YOU WILL BE DOING:

• Assist in the operation and monitoring of assurance controls and security intelligence.
• Investigate observations found during routine analysis of activities and lead the remediation collaborating closely with the wider business where needed to ensure resolution.
• Become a domain expert working with the IT and product teams to ensure security remains baked in from the outset.
• Ensuring day to day Information Security and Compliance obligations and responsibilities are met.
• Investigate security events and incidents and work from triage to remediation
• Conducting proactive research to analyse security weaknesses and recommend appropriate strategies to mitigate risk.
• Assist with building and implementing tools to automate security monitoring and tasks
• Assist with achieving and maintaining ongoing PCI DSS compliancy across the business.
• Conduct internal audits across business units to assess ongoing compliance and own any identified issues through to remediation.
• Participate in development and implementation of the appropriate and effective controls to mitigate identified threats and risks.
• Work closely with the wider CKO teams (IT, Engineering etc) to ensure strong Information security governance and information assurance is in place securing the confidentiality, availability, and integrity of the business.
• Participat