Markets Product Security Engineer - UK
Markets Product Security Engineer - UK
Posted on :
01-06-2025
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
The Role:
This is an amazing opportunity to work with Information Security and Compliance Team at ION. As a Product Security Engineer you would be the key enabler of secure and compliant products. You should have knowledge of attack paths across the technology stack including tactics techniques and procedures (TTPs) used by adversaries to exploit vulnerabilities. You will be trusted advisor throughout the product development lifecycle incorporating knowledge of emerging threats business goals and system design to improve platform security posture. You will be responsible for aligning the Markets security strategy security design and controls engineering to product roadmap. You will also be responsible for providing transparency to leadership on product control performance and associated risk.
Key Responsibilities:
- Within the Product Security Team as part of the ION Markets CISO function you will deal with the following activities:
- Monitor and identify security events and emerging threats associated with the product line you are managing and any dependencies;
- Act as the interface between CSIRT and Product teams as part of security incident activities;
- Deliver threat modelling and hunting to identify vulnerabilities in product design and provide control recommendations to mitigate those risks;
- Engage in architecture and design reviews to ensure product alignment with Security strategy and industry best practices;
- Stay up to date with industry trends best practices and regulatory standards that may impact product implementations;
- Support the engineering of control solutions where existing offerings are not available;
- Provide security expertise during incident and problem management.
- Produce threat intelligence briefings and other work products to share information across the organisation
- Respond to ad-hoc requests for platform security related guidance
- This role may require some overnight weekend and on-call activities.
Required Skills Qualifications and Experience:
- Knowledge of:
- Working within the financial services industry or other highly regulated industries in a technical role.
- Information security management governance and compliance principles practices laws rules and regulations e.g. NIST ISO NIS DORA and GDPR;
- Information technology systems and processes network infrastructure data architecture data processes and protocols;
- Cyber and cloud security standard frameworks architecture design operations controls technology solutions and service orchestration e.g. CIS CSF;
- Skills in:
- Security Tooling: Proficiency in common security tools such as SIEMs vulnerability scanners firewalls and EDR products;
- Scripting: Proficiency in scripting languages like Python BASH or PowerShell;
- Security Incident Management: Ability to assist with the detection response and recovery of escalated security incidents and manage backlog/lessons learned actions;
- Risk Assessment: Proficiency in conducting security risk assessments and providing thorough post-event analyses;
- Security Expertise: Providing security expertise during incident and problem management;
- Communication: Strong communication skills to explain complex security issues to both technical and non-technical audiences.
- Ability to:
- Effectively communicate technical issues to diverse audiences both in writing and verbally;
- Handle sensitive and confidential matters situations and data;
- Understand and follow broad and complex instructions;
- Comprehend technical language and to confer analyse and write in an objective lucid manner;
- Work independently and prioritize multiple tasks and adapt to needed changes;
- Remain calm under high pressure/difficult situations.
Preferred Certifications:
- GCIH;
- CSEC;
- CSSLP;
- CISSP.
- CASP
About us:
Were a diverse group of visionary innovators who provide trading and workflow automation software high-value analytics and strategic consulting to corporations central banks financial institutions and governments. Founded in 1999 weve achieved tremendous growth by bringing together some of the best and most successful financial technology companies in the world.
Over 2000 of the worlds leading corporations including 50% of the Fortune 500 and 30% of the worlds central banks trust ION solutions to manage their cash in-house banking commodity supply chain trading and risk.
Over 800 of the worlds leading banks and broker-dealers use our electronic trading platforms to operate the worlds financial market infrastructure.
ION is a rapidly expanding and dynamic group with 13000 employees and offices in more than 40 cities around the globe. Our ever-expanding global footprint cutting edge products and over 40000 customers worldwide provide an unparalleled career experience for those who share our vision.
ION is committed to maintaining a supportive and inclusive environment for people with diverse backgrounds and experiences. We respect the varied identities abilities cultures and traditions of the individuals who comprise our organization and recognize the value that different backgrounds and points of view bring to our business.
ION adheres to an equal employment opportunity policy that prohibits discriminatory practices or harassment against applicants or employees based on any legally impermissible factor.
Employment Type
Full-Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
