Security Analyst
Octopus Deploy sets the standard for Continuous Delivery, empowering software teams to deliver value in an agile way. Over 4,000 organizations globally – including Ubisoft, ASOS, Xero, monday.com, Stack Overflow, NASA, and Disney – rely on our Continuous Delivery, GitOps, and release orchestration solutions.
Founded in Australia in 2012, our team of over 270 Octonauts now spans the globe. We combine high growth and big ambitions with a sustainable, balanced working environment. Our revenue has grown consistently between 30–50% every year for the past 8 years, and we’ve been profitable for 10 out of the past 11 years.
We’ve been remote-first since 2015 and work with an uncommon level of transparency. You can read our public handbook to learn how we work. We have a transparent approach to compensation that ensures people doing the same work with the same skill get paid the same, with well-defined career pathways. We foster a supportive, collaborative, and high-trust environment. We leave our job titles at the door and focus on doing what’s best for our customers and team. Our leaders never shy away from answering the tough questions at our all-hands calls or in 1:1s. We conduct interviews and onboarding virtually as part of being a remote-first company.
We are seeking a dedicated Security Analyst to join our Security Operations team and contribute to our mission of ensuring the security and integrity of our systems and data. In this role, you will be at the forefront of our efforts to protect Octopus against cyber threats.
You will work closely with our engineering teams across EMEA to provide your expert advice and assistance across a variety of tasks and be on-call during business hours only.
You will be a great fit for this role if you have:
- Awareness of the latest trends and developments in cyber security to anticipate and mitigate potential threats.
- Experience managing and optimising endpoint security technologies, including policy configuration and exception management.
- Experience performing threat intelligence and threat hunting.
- Experience working with security researchers to identify, assess, and manage product vulnerabilities.
- Proficiency in day-to-day operational security to support internal and external stakeholders.
- The ability to coordinate security incidents, ensuring effective management and resolution.
- Familiar with security frameworks and standards such as ISO 27001, Soc II Type 2, and CIS controls.
A typical day might include:
- Collaborating with Stakeholders: Engage with internal and external stakeholders through various channels such as Slack, email, and Bugcrowd to address a variety of tasks and ensure effective communication and coordination.
- Responding to Security Issues: Provide on-call support during business hours to address security issues and incidents promptly.
- Analysing Threat Intelligence: Monitor and assess the cyber threat landscape to identify potential risks and provide actionable intelligence to support our security posture.
- Managing Security Platforms: Configure and manage our endpoint security platform and monitor our Security Information and Event Management (SIEM) platform to ensure they are running optimally.
- Maintaining our Security Advisories Page: Update and maintain our security advisories page to inform stakeholders about vulnerabilities in our products.
Compensation:
Octopus has an internally open and transparent system for compensation. Any Octonaut can view the compensation for any role at any level. This ensures people doing the same work with the same skill get paid the same.
The compensation for this role is:
Level 2
Maturing: £50K + stock options
Performing: £55K + stock options
Benefits include a minimum of 25 days annual leave, up to 10 days of paid sick and carers leave, 12 weeks of fully paid parental leave with flexible return options, pension contributions of up to 5%, and stock options. Learn more.
Below is the interview process you can expect for this role. We know interviewing can seem daunting, but rest assured we designed our interview process to move quickly while still getting you all the information you need.
👋🏼Initial chat [30 min]
Meet with a Talent Acquisition Partner to cover initial questions from you and from us to get a better understanding of the role and Octopus.
💻Technical Interview [45-60 min]
In this interview, you’ll chat with the hiring manager and a member of the Security Operations team. You’ll be asked general questions, scenario-based questions, and technical questions. We welcome any questions you may have for us!
🧑💻Panel Interview [45-60 min]
In this interview, you’ll chat with the hiring manager and meet cross-functional team members. You can expect a mix of leaders and individual contributors to join the chat. By the end of this call, you should have a great idea of what it’s like to work at Octopus. We should also have a great idea of what it would be like to have you on the team! We’ll ask any final questions and encourage you to do the same.
Our public employee handbook is the best place to learn more about life at Octopus. It includes our values, how we structure teams, career progression, leave and benefits, and much more.
If you're enthusiastic about this position, even if you don’t meet all the criteria above, we wholeheartedly encourage you to submit your application. Our talent team is in-house, and we recognize that every individual brings something unique. We take the time to review every application and consider how you might add to the team.
We know your time is precious. If you apply, we promise to update you at least once per week about the status of your application and to give you clear expectations for each step in the journey.
[Note to Search Firms/Agencies]
Octopus Deploy does not compensate search firms for unsolicited assistance unless they have a written search agreement with Octopus Deploy and the requisition is position-specific. Any resumes, curriculum vitae and other unsolicited assistance from search firms that do not have a written search agreement or position-specific requisition submitted to any Associate of Octopus Deploy will be deemed the sole property of Octopus Deploy and no fee will be paid in the event the candidate is hired by Octopus Deploy.