
How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Cyber Security Analyst
# **Senior Cyber Security Analyst – London**
**Location:** London, UK
## **Company Description**
Hi. We’re OFX, a leading financial operations company providing **businesses and accounting firms** with **real-time financial control and visibility** to operate seamlessly across the world. With an innovative platform paired with **24/7 human support**, OFX automates and simplifies global payments, reducing risk and eliminating routine operational challenges through:
- Global business accounts
- Payments available to **180 countries** in **30+ currencies**
- **Currency risk management solutions** for efficient cross-border transactions
- **Corporate cards and spend management tools**
- **Bill payments and vendor management**
- **Integrations** with leading accounting and HRIS software
Headquartered in **Sydney, Australia**, OFX operates globally through offices in the **US, Canada, UK, Ireland, New Zealand, Singapore, and Hong Kong**. We have been an industry innovator in global money movement for over **25 years**.
---
## **Job Description**
### **Purpose of the Role**
As a **Cyber Security Analyst** based in **London**, you will **drive security excellence** across OFX’s global operations with high autonomy, initiative, and a proactive mindset. You will serve as the **primary security point of contact** for your time zone, ensuring robust protection of OFX’s technology environment.
This role is ideal for a **hands-on cyber security professional** with proven experience in **cloud security, threat detection, incident response, and security operations** who is passionate about **shifting security left** through collaboration with engineering teams.
Key priorities include:
- Strengthening **global technology security** via hands-on work in **cloud infrastructure, identity systems, endpoint protection, security monitoring, and detection platforms**
- Leading **cloud-native and DevSecOps security initiatives** by integrating security into **platforms, pipelines, and operational workflows**
- Collaborating with **DevOps, Platform Engineering, Fraud, and Infrastructure teams** to enforce a **secure, compliant, and efficient security posture**
---
### **Responsibilities**
You will be responsible for driving security maturity across five critical areas:
#### **1. Cloud & Infrastructure Security**
- Secure **multi-cloud environments** (**AWS, GCP**) using least privilege principles and **Cloud Native Application Protection Platforms (CNAPP)**
- Ensure adherence to secure cloud deployment frameworks
#### **2. Operational Excellence**
- Manage our **world-class security toolkit** including:
- **EDR/XDR solutions**
- **SASE (Secure Access Service Edge)**
- **Identity and Access Management (IAM)**
- **AI-driven email threat defence**
#### **3. Compliance & Risk**
- Apply **automated compliance platforms** to maintain **ISO 27001, NIST standards, and DMARC/email authentication**
- Ensure alignment with global regulatory requirements
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
4. Incident Response
- Lead security incident investigations, identify root causes, and execute remedial actions independently
- Escalate critical issues and drive coordinated responses
5. Vulnerability & Third-Party Risk
- Oversee vulnerability management and third-party risk assessment using automated scoring platforms
- Ensure third-party providers meet required security benchmarks
6. Metrics & Reporting
- Develop and maintain security dashboards for monitoring, reporting, and global visibility
- Provide data-driven insights to the security team
Daily Duties
- Investigate and respond to cyber alerts and incidents across cloud platforms, identity systems, endpoints, email, and network infrastructure
- Enhance OFX’s AI-driven security defenses while ensuring secure AI usage in operations
- Maintain alignment with leading cyber security benchmarks and implement bespoke security controls
- Onboard new security services, troubleshoot issues, and champion excellence in operational security
- Cross-functional collaboration with engineering, product, and compliance teams
- Support upskilling efforts by promoting best security practices company-wide
- Communicate effectively with stakeholders on technical and non-technical levels
Requirements
Key Skills & Experience
- Industry-standard analyst experience in cyber security, with a focus on cloud security
- Certifications (ISC)² CISSP, CesA, SANS/GIAC, or equivalent experience considered a plus
- Hands-on proficiency in AWS cloud security (IAM, security groups, Lambda, VPC, EventBridge, GuardDuty, Insights etc.) as a foundational requirement
- Experience with Kubernetes, docker, and/driven network security technologies ; solutions such as xDR platforms
- Domain expertise in:
- Zero Trust (Zero Trust Network Access, identity-based, policies)
- End-point protection (EDR/XDR suites)
- Identity and access management (IAM and modern authentication mechanisms)
- Security Information and Event Management (SIEM systems)
- Cloud Security Posture Management (CSPM)
- Strong deeper knowledge of threat actors, tactics, techniques, procedures and reconnaissance methodologies.
- Incident response experience (processes and frameworks)
- Competence in:
- Network security (Firewalls, Intrusion Prevention / Detection)
- Application security, protection technologies, risk-based security / avoidance
- Strong analytical mindset for diagnosing root causes of security incidents, with a focus on outcome-driven planning and optimization
- Comfortable working acutely in multiple time zones and across diverse teams globally
Behavioural Traits
- Highly inquisitive, growth-oriented mindset
- Solution-driven – uncovers opportunities for process improvement and drives their adoption proactively
- Document policies, procedures, and guidelines effectively
- Strong communication and stakeholder management skills
- Resilient attitude – goes above and beyond to break down blockers and deliver results


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Technical Requirements
- Familiarity with IAM, container technologies (Kubernetes, Docker), and cloud-native environments
- Experience with driver threat intelligence platforms, SIEM and XDR tools, SASE frameworks, DMARC, and DLP-style controls
- Solid understanding of SIEM use cases, surface over investigative models / requirements.
- Hands-on experience with DMARC/email authentication technologies
What and How OFX Offers
Culture & Mindset
- We’re OFXers because we make a difference – our strong company-wide ethos is driven by curiosity and growth.
- We turn challenges into opportunities with initiative and resilience as non-negotiables.
- Our culture encourages lifelong learning, with unfettered access to training, discussions in the cloud, cross-team development, self-growing events and learning pathways.
Opportunity and Learning
- Opportunity to operate globally within our distributed IT/tech team
- The chance to contribute to and drive internationally-recognised solutions that influence an organisation of scale
- Make a positive impact through technology and security
Appreciation Program
- Through Make a Difference, we enable our OFXers to:
- Volunteer time for causes aligned with your values, with oregany support in the form of volunteer days and matched giving
- Nominate and contribute to your community of choice each quarter
- Recognise personal milestones and achievement made within EFX through suggested awards and peer-driven effort motivation.
Team & Social Environment
- Supporting employee-led committees and events curated around catapulting friendships and fostering inclusive work culture
- Quarterly Internal Events that celebrate achievements, milestones, and the contribution made in bettering create OFX
- There’s a wealth of organised team social events, from monthly officers-get togethers to seasonings and events (such as annual end-of-year parties)
Culture & Values
- Personal health and wellbeing championed from the top, demonstrated through resources including health insurance and primary & secondary gender-neutral parental leave (one become of carer leave)
- Hybrid working flexibility redefining work-to-life balance within our inclusive, diverse, and pioneering culture
We are committed to creating a diverse, inclusive, and accessible workplace where your well-being and individuality are respected and celebrated. If you require accommodations during recruitment or any other portion of the hiring process, please contact us.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location