Operational Security Analyst (IT & Payment Systems)

About the Company

Indra is a major global technology and consulting group that supports mission-critical business operations for clients around the world. Through its affiliate Minsait, it is a recognised leader in digital transformation consulting and information technologies in Spain and Latin America. The company operates with its own product portfolio, a strong focus on high-value solutions, and a significant innovation component. In the 2024 financial year, Indra reported revenue of €4.84 billion, employed more than 60,000 people, had a local footprint in 46 countries, and carried out business in over 140 countries.

The organisation is guided by four core values:

• Innovation: advancing safer and better-connected outcomes through cutting-edge technology and specialist expertise.
• Trust: delivering dependable, quality-driven solutions with commitment and reliability.
• Connection: working collaboratively, aligning ideas and solutions to customer needs, and supporting progress toward a better future.
• Foresight: anticipating future demands and turning knowledge and experience into solutions that make the world safer and more connected.

Role Overview

This position is for an Operational Security Analyst who will help deliver day-to-day information security across IT, cloud, and payment-related environments. The role is part of the operations function and focuses on building security into live services, keeping controls effective, understanding risk, and applying security practices consistently across engineering and operations teams.

The role works closely with service delivery, infrastructure, and external providers to help maintain a secure, compliant, and resilient operating environment, especially in regulated payment settings such as PCI DSS and P2PE.

Key Responsibilities

• Serve as a contact point for operational security issues and help support service delivery across cloud, infrastructure, and payment platforms.
• Help implement and maintain security controls across AWS, on-premises infrastructure, and end-user environments.
• Partner with engineering and operations teams to ensure security is integrated into daily business and technical processes.
• Support SIEM monitoring and review alerts to identify possible security incidents.
• Assist with investigation, escalation, and documentation of security events.
• Contribute to better monitoring coverage and stronger detection capabilities.
• Help identify, evaluate, and track information security risks together with risk owners.
• Support vulnerability management activities, including scanning, identification, prioritisation, remediation tracking, reporting, and follow-up.
• Support security controls within cardholder data environments.
• Help maintain PCI DSS compliance through logging and monitoring, access reviews, and vulnerability management.
• Gain exposure to P2PE environments and device ecosystems while supporting secure operations.
• Assist with cryptographic controls, including key management, secure handling, and secure storage practices.
• Support identity and access management processes.
• Help create and maintain security procedures, standards, and runbooks.
• Promote security awareness so policies are understood and followed across teams.
• Support automation and ongoing improvement efforts within security operations.
• Assist with third-party security assessments and validation of controls.
• Support audit and compliance work by gathering evidence for PCI DSS and ISO 27001.
• Help strengthen the overall control and governance environment.

Requirements

• A degree in Computer Science, Information Technology, Cyber Security, or equivalent hands-on experience.
• Between 1 and 3 years of experience in information security, IT operations, or another related technical role.
• Exposure to security operations work, including SIEM monitoring or alert triage.
• Familiarity with vulnerability management tools and processes.
• Basic knowledge of cloud platforms such as AWS and wider IT infrastructure.
• Understanding of network security basics, identity and access management, and endpoint security principles.
• Awareness of frameworks and standards such as ISO 27001, PCI DSS, and ideally NIS2 or DORA.
• Exposure to payment security environments, particularly PCI DSS or P2PE, is desirable.
• Experience in regulated environments or operational settings is desirable.
• Strong analytical thinking and problem-solving ability.
• Solid documentation skills and strong attention to detail.
• Ability to communicate clearly with both technical and non-technical stakeholders.
• Proactive attitude, willingness to learn, and readiness to take ownership.
• Comfort working independently as well as collaboratively in a fast-moving environment.

Benefits

• 24 days of holiday per year, plus Irish bank holidays, with the option to buy or sell leave.
• Pension contribution of 7% from the employee and 7% from the employer.
• Private medical insurance, including dental and optical cover.
• Flexible and hybrid working options.
• Charitable initiatives.
• Learning and development programmes.
• Travel and expense allowances.
• An innovative and collaborative workplace culture.

Equal Opportunity

Indra is an equal opportunity employer and considers applicants without discrimination based on race, colour, religion, sex, sexual orientation, gender identity, national origin, age, disability, or any other legally protected characteristic.