We're creating a new payment
network for the internet

Open positions

Information Security Officer

We’re looking for an Information Security Officer to lead the development and execution of our security objectives.

Annual payment volume at GoCardless exceeds $1 billion, and we’re processing tens of thousands of transactions every day. This means that the need for information security is paramount. You will cover technical, physical and administrative security controls to articulate, mitigate and manage risk for GoCardless and our customers.

The role

Your primary role is to maintain and expand our security programme using data-driven methods that focus on organisation and situation specific results. You’ll provide hands-on expertise and guidance for all matters relating to information security.

Some of the main elements of this role will involve:

  • Ensuring on-going compliance with Information Security Standards (ISO27001) and acting as our internal resource on compliance requirements.
  • Providing subject matter expertise to our management team to identify, recommend and implement appropriate information security controls.
  • Managing IT operational processes related to security and compliance, such as disaster recovery, change control and user rights management.
  • Leading work on policy compliance, investigations and risk mitigation.
  • Reviewing and uncovering new threats, vulnerabilities and compliance requirements.
  • Developing risk and compliance remediation plans with our Legal, People and Engineering teams.

Who we're looking for

  • You have extensive experience in the information security field designing and implementing enterprise security solutions.
  • You have experience with security practices such as security incident response and risk management.
  • You have experience of applying common information security management frameworks, such as ISO 27001, ITIL, SABSA, COBIT and NIST.
  • You are able to effectively negotiate with multiple stakeholders, being assured of your knowledge and experience as well as the business objectives.
  • You have experience driving a culture of security awareness.
  • You have experience administering network devices, databases, and web application servers.

Our team come from a variety of backgrounds and we welcome diversity – if you’re unsure, please apply.

Apply now

Find out more about working at GoCardless

Visit our team page