Position Overview: 

We are seeking a dedicated SOC Analyst to join our dynamic security team. The SOC Analyst will be responsible for monitoring, detecting, and responding to security incidents across our corporate infrastructure, SaaS platforms, data centers, and customer services. This role involves close collaboration with our MSSP partners to maintain a robust security posture as well as working with Product, R&D, IT and the different Datacentres.

Key Responsibilities:

• Security Monitoring: Continuously monitor security alerts and events across various platforms, including Office 365, corporate SaaS applications, and data centers.
• Incident Detection and Response: Identify potential security incidents, conduct initial triage, and coordinate with internal teams and MSSPs for effective response.
• Threat Analysis: Analyze security threats and vulnerabilities to assess potential impact on the organization.
• Collaboration: Work closely with MSSP partners and internal stakeholders to enhance detection capabilities and improve incident response processes.
• Documentation: Maintain detailed records of security incidents, including analysis, response actions, and lessons learned.
• Continuous Improvement: Participate in the development and refinement of SOC processes, playbooks, and procedures to enhance operational efficiency.

Qualifications:

• Education: Bachelor’s degree in Computer Science, Information Security, or a related field.
• Experience: Minimum of 2 years of experience in a SOC or similar security-focused environment.
• Technical Skills:
• Proficiency in using Security Information and Event Management (SIEM) tools.
• Familiarity with cloud security principles and experience with platforms such as Office 365 and other SaaS applications.
• Understanding of network protocols, intrusion detection systems, and incident response methodologies.
• Certifications: Relevant certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH) are preferred.

• Soft Skills:
• Strong analytical and problem-solving abilities.
• Excellent communication skills, both written and verbal.
• Ability to work collaboratively in a team environment.
• Attention to detail and a proactive approach to identifying and mitigating security threats.
• Fluent in English.

About the Role

We’re looking for a Junior Security Operations Engineer who is AI-Forward to help scale and modernize our SecOps program. This is a hands-on, builder role for someone who will design and ship the security tooling that powers our triage, investigations, and response workflows.

You’ll report to the Technical Operations Director and work alongside our GRC lead to improve our vulnerability intake, threat response, darkweb posture, and internal security tooling. A core part of this role is building AI-assisted security tooling: triage agents that pre-classify bug bounty reports, investigation copilots that pull context from logs and SIEM data, response workflows that draft remediation steps and track them to closure. You’ll spend as much time wiring up that tooling as you will reproducing vulnerabilities and working incidents.

This role suits someone who thrives in a lean, high-impact environment, has strong opinions on where humans add value versus where tooling should take over, and wants to shape how a modern security team operates.

What You’ll Do

Triage & Vulnerability Management

• Review incoming vulnerability reports from our bug bounty intake; reproduce and document valid issues for engineering teams.
• Build the tooling that improves signal-to-noise: automate duplicate detection, spam filtering, and abuse flagging so humans only touch what’s worth touching.
• Act on DAST findings: coordinate remediation, verify fixes, and re-test.
• Track remediation timelines for critical vulnerabilities and keep stakeholders honest on SLAs.

Threat Response & Monitoring

• Monitor and respond to EDR and cloud security alerts; investigate, contain, and document.
• Analyze darkweb findings and credential exposures; shape our darkweb monitoring practices and tooling over time.
• Improve detection coverage: tune noisy rules, close gaps, and enrich alerts with context so responders spend time on decisions, not data gathering.
• Help configure and tune DLP, SIEM, and AI security tooling.

Security Tooling (core to this role)

• Build AI-assisted triage tooling that pre-classifies bug bounty reports, flags duplicates, and routes real issues to the right engineering team with reproduction context attached.
• Build investigation tooling: LLM-backed copilots and Slack bots that pull alert context, correlate signals across sources, and surface what actually matters.
• Build response tooling: workflows that draft remediation steps, generate evidence artifacts, and track issues to closure across the teams that own them.
• Evaluate emerging AI security tooling and bring what’s genuinely useful into the stack; retire what isn’t.
• Apply a security-minded lens to our own AI usage: prompt injection, data exfiltration, model misuse, and the guardrails that go around them.

Compliance & Cross-Functional

• Support audit evidence collection for SOC 2, ISO 27001, and PCI DSS.
• Partner with ITOps to verify patches, endpoint coverage, and access hygiene.

You May Be a Good Fit If You Have

• Previous experience in a SecOps, Security Analyst, or Threat Response role.
• Proven ability to understand and reproduce technical vulnerabilities. You can read a bug report and tell whether it’s real.
• Experience with bug bounty triage (HackerOne, Bugcrowd, or similar).
• Hands-on exposure to SIEM, EDR, and DLP tools in production environments.
• A genuine, demonstrated interest in applying AI/LLMs to security work: side projects, internal tooling, prompt engineering, agent frameworks, anything that shows you’ve actually built with this stuff.
• Scripting and automation skills in Python, Bash, or similar. You reach for code before you reach for a checklist.
• Comfort working autonomously across time zones and asynchronously.
• Strong written communication. You can turn a messy investigation into a clear, defensible writeup.

Bonus Points For

• Experience building LLM agents, RAG pipelines, or Slack bots backed by OpenAI / Anthropic / open-source models.
• Detection engineering experience (Sigma rules, custom Falcon queries, Grafana/Loki dashboards).
• Cloud security depth in AWS or GCP (IAM, workload posture, cloud-native logging).
• Prior work in regulated environments (SOC 2, ISO 27001, PCI DSS) from the practitioner side.
• Exposure to AI/ML security concerns such as prompt injection, model evals, and data leakage through LLMs.
• Public contributions: blog posts, CVEs, open-source tools, CTF writeups.

Engagement & Logistics

• Full-time contract.
• Remote-first and async-friendly. We have hubs in San Francisco, Denver, Dublin, and Amsterdam. If you’re near one, we’d love to see you in the office regularly; if you’re elsewhere in the world, that works too.
• Potential to extend or convert based on fit.
• Reports to the Technical Operations Director; works closely with the GRC lead and IT Operations.

How We Work

We’re a lean, high-trust team. We value people who ship, who can operate independently, and who treat security as an engineering problem rather than a checklist. If you’re someone who sees a repetitive task and immediately thinks “this should be a script, or better yet, an agent,” you’ll fit in here.

To Apply

Tell us about a time you used AI, automation, or custom tooling to meaningfully change how a security workflow ran. What was manual before, what it looked like after, and what you learned. Links to code, writeups, or demos are welcome.

This is Adyen

Adyen provides payments, data, and financial products in a single solution for customers like Meta, Uber, H&M, and Microsoft - making us the financial technology platform of choice. At Adyen, everything we do is engineered for ambition. 

For our teams, we create an environment with opportunities for our people to succeed, backed by the culture and support to ensure they are enabled to truly own their careers. We are motivated individuals who tackle unique technical challenges at scale and solve them as a team. Together, we deliver innovative and ethical solutions that help businesses achieve their ambitions faster.

Senior Identity Governance Analyst

Adyen’s Enterprise Access Management team is looking for a Senior Identity Governance Analyst to help us establish the guardrails for our identity environment. We need a professional who can bridge the gap between business logic and technical implementation to help ensure our access models are secure and scalable.

What You’ll Do

• Coordinate periodic access certification campaigns and audits across key directory services and SaaS platforms.
• Collaborate with business owners to define role-based access controls (RBAC) and approval hierarchies during application onboarding.
• Analyze joiner-mover-leaver (JML) workflows to maintain data hygiene and ensure access remains aligned with current organizational structures.
• Provide oversight for privileged account management to verify documented approval and ongoing business necessity for administrative access.
• Develop governance standards for non-human identities and AI agents to ensure visibility and adherence to security policies.
• Translate governance policies into actionable technical requirements for integration with identity automation and internal platforms.
• Act as a primary point of contact for internal and external auditors to support compliance reporting and control validation.
• Develop and maintain governance metrics and reporting - including certification completion rates, orphaned account tracking, and separation-of-duties violation monitoring - to measure program effectiveness.

Who You Are

• Professional experience in identity governance, risk, or compliance within an enterprise environment.
• Hands-on experience with identity governance platforms such as SailPoint, Okta Identity Governance, Saviynt, or similar IGA solutions, including access certifications, role management, and lifecycle policy configuration.
• Experience supporting compliance frameworks such as PCI DSS v4, ISO 27001, ISO 27002 or SOC 2, including evidence collection and control validation for internal and external audits.
• Strong understanding of identity lifecycles, least-privilege principles, and RBAC frameworks.
• Proven track record of managing data-driven audit and remediation projects independently.
• Analytical mindset focused on identifying process improvements and implementing scalable governance solutions.
• Collaborative team player who thrives on solving complex identity challenges.
• Strong communication skills with the ability to translate governance requirements for both technical and non-technical stakeholders.
• Experience in financial services, payments, or fintech is a plus.

Our Diversity, Equity and Inclusion commitments 

Our unique approach is a product of our diverse perspectives. This diversity of backgrounds and cultures is essential in helping us maintain our momentum. Our business and technical challenges are unique, and we need as many different voices as possible to join us in solving them - voices like yours. No matter who you are or where you’re from, we welcome you to be your true self at Adyen. 

Studies show that women and members of underrepresented communities apply for jobs only if they meet 100% of the qualifications. Does this sound like you? If so, Adyen encourages you to reconsider and apply. We look forward to your application!

What’s next?

Ensuring a smooth and enjoyable candidate experience is critical for us. We aim to get back to you regarding your application within 5 business days. Our interview process tends to take about 4 weeks to complete, but may fluctuate depending on the role. Learn more about our hiring process here. Don’t be afraid to let us know if you need more flexibility.

This role is based out of our Amsterdam office. We are an office-first company and value in-person collaboration; we do not offer remote-only roles.