Information Security Analyst

About Vitesse

We are Vitesse - the treasury and payment partner of choice for insurance. Formed in 2014 by a team of proven FinTech entrepreneurs, we are an FCA regulated business providing global claim funds management and payment solutions. Operating one of the largest banking and payment settlement networks in the world, we give our customers direct access to 200 countries and currencies. Through a single integration, insurers can use this network to pay claims in as fast as 45 seconds and deliver a superior claimant experience. Our market leading treasury proposition provides insurers with transparency and control over their claim funds, even when delegated to third parties, allowing them to have their money in the right place, at the right time, to make that all important payment when customers need it most.

With over 260 employees across our London headquarters, Europe, and the US, $93m Series C funding secured, and exceeding £15bn in processed transactions, we are only just getting started.

Your Mission

We are seeking a skilled and motivated Information Security Analyst to join our team, reporting into the CISO. You will play a crucial role in safeguarding our organisation's digital assets and infrastructure from cyber threats. You will be responsible for analysing security measures, identifying vulnerabilities, and help implement effective solutions to mitigate risks.

This role requires participation in an out of hours call out rota, usually 1 in 4 or 5 weeks, and availability for short term assignments in the US to support our North American business.

Onboarding will require at least 2 days onsite in our London office.

Ideal candidates have a strong understanding of information security principles, excellent analytical skills, and the ability to adapt to evolving threats in the cybersecurity landscape.

Your Responsibilities

• Monitor security systems including intrusion detection, firewalls, and SIEM. Collaborate with our external SOC to detect and respond to security incidents in a timely manner.
• Participate in incident response activities, including triage, containment, eradication, and recovery.
• Conduct thorough investigations of security incidents and provide detailed reports on findings and recommendations for remediation.
• Contribute to regular security assessments and audits to identify vulnerabilities and weaknesses in systems, networks, devices, and applications.
• Act as a subject matter expert on security related matters, providing guidance and support to other teams and departments via the help desk system.
• Collaborate with IT teams and stakeholders, contributing to the design and implementation of security controls to protect against cyber threats.
• Stay up to date with the latest security trends, technologies, and best practices, and provide recommendations for continuous improvement.
• Assist with the management of security awareness training and workshops for employees.
• Participate in the development and maintenance of disaster recovery plans to ensure the organisation's ability to respond to and recover from incidents.
• Collaborate with internal teams during due diligence exercises to ensure key security controls are documented for each submission.

Qualifications

• Certifications such as CISSP, CISM, or CompTIA Security+ are highly desirable.
• Proven experience working in information security, with a good understanding of security principles, protocols, and technologies.
• Experience with information security standards including ISO 27001, NIST, and Cyber Essentials.
• Experience with security assessment tools and techniques, including vulnerability scanning and penetration testing.
• Good understanding of Microsoft Azure, Office 365, and Microsoft E5 security tooling.
• Strong analytical and problem solving skills, with the ability to analyse complex systems and identify security risks and vulnerabilities.
• Excellent communication and interpersonal skills, with the ability to convey technical information to non technical stakeholders.
• Ability to work independently and collaboratively in a fast paced environment, with a strong sense of accountability and attention to detail.
• Sound judgment and decision making abilities, especially in high pressure situations requiring quick and accurate assessments.
• High ethical standards and a commitment to maintaining confidentiality.

Benefits

• 25 days Holiday per year (increasing by 1 day per year of service, up to 30 days) + Bank Holidays
• Hybrid working arrangements - minimum 2 days in the office, Tuesday to Thursday
• Contributory pension scheme
• Enhanced parental leave
• Cycle to Work Scheme
• Private Medical Insurance with AXA
• Unlimited access to therapy sessions through our partner, Oliva
• Discounted Gym membership through Gympass
• Financial Coaching with Octopus Wealth
• 2 days of volunteering leave per year
• Sabbatical after 5 years' service
• Life Assurance - MetLife (UK employees only)
• Ongoing Learning and Development to support you reach your career goals

Our Values

Confident Humility - We don't do ego and we know that unless we all win, none of us win. We admit when we're wrong, ask for help and always think about the wider business before ourselves.

Driven to Succeed - We see the opportunity ahead of us and we won't stop until we fulfil the potential we know we have. We hold ourselves to high standards and deliver high quality outcomes for Vitesse and our customers.

Tenacious Responsibility - We take ownership for our actions and decisions, and face the challenges that come our way. We are committed to seeing things through to completion, even in the face of adversity.

We are an Equal Opportunity Employer

We are committed to creating an inclusive environment that enables everyone to perform at their best, where we recognise the rights of all individuals to mutual respect and where there is an unbiased acceptance of others. Our policies and practices aim to promote an environment that is free from all forms of unfair discrimination and values the diversity of all people. At the heart of our policy, we seek to treat people fairly and with dignity and respect.