JOB DESCRIPTION: CYBERSECURITY ENGINEER
POSITION OVERVIEW
We are seeking an experienced Cybersecurity Engineer to join our security team and protect our on-premises retail trading platform and internal IT infrastructure. This role is critical to maintaining the confidentiality, integrity, and availability of our trading systems and corporate data.
KEY RESPONSIBILITIES
Trading Platform Security
- Design, implement, and maintain security controls for our on-premises retail trading platform
- Conduct regular vulnerability assessments and penetration testing on trading systems
- Monitor trading platform logs and security events for suspicious activities or breaches
- Implement multi-factor authentication, encryption, and access controls for trading systems
- Ensure compliance with financial regulatory requirements (SEC, FINRA, SOX, and other applicable standards)
- Develop and maintain disaster recovery and business continuity plans for critical trading infrastructure
- Collaborate with platform development teams to integrate security throughout the software development lifecycle
Office Network & Internal Server Security
- Manage and secure the corporate network infrastructure, including firewalls, VPNs, and intrusion detection systems
- Administer directory services (Active Directory/LDAP) and user access management
- Implement endpoint protection across office workstations and internal servers
- Monitor network traffic and server logs for anomalies and unauthorized access attempts
- Manage patches and security updates for all office systems and internal servers
- Design and enforce security policies for office networks and remote access
- Manage security appliances and network segmentation
General Security Operations
- Respond to security incidents and conduct root cause analysis
- Maintain and update security documentation and policies
- Participate in security awareness training and user education initiatives
- Stay current with emerging security threats and industry best practices
- Prepare security reports for management and compliance audits
- Conduct security risk assessments and provide remediation recommendations
- Manage security tools and SIEM (Security Information and Event Management) systems
REQUIRED QUALIFICATIONS
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent professional experience)
- Minimum 5 years of hands-on cybersecurity experience
- Strong knowledge of network security, firewalls, intrusion detection/prevention systems
- Experience securing on-premises infrastructure and servers
- Proficiency with security tools such as SIEM, vulnerability scanners, and endpoint detection systems
- Understanding of trading systems, financial platforms, or similar mission-critical applications is highly valued
- Knowledge of financial compliance frameworks
- Experience with incident response and forensics
- Strong understanding of cryptography and encryption methods
- Solid command-line and scripting skills (Linux/Windows, Python, PowerShell, or Bash)
- Security certifications such as CISSP, CEH, CCNA Security, or CompTIA Security+
PREFERRED QUALIFICATIONS
- Experience with on-premises trading platforms or financial technology systems
- Familiarity with containerization and virtualization security (Docker, Kubernetes, VMware)
- Knowledge of API security and secure coding practices
- Experience with infrastructure-as-code and secure configuration management
- Previous work in a regulated financial services environment
- Experience with threat intelligence and advanced persistent threat (APT) analysis
- Cloud security experience (AWS, Azure, or GCP)
REQUIRED SKILLS
- Technical Expertise: Network protocols, operating systems (Windows, Linux), database security, application security
- Problem-Solving: Ability to analyze complex security issues and develop effective solutions
- Communication: Clear written and verbal communication for technical and non-technical stakeholders
- Attention to Detail: Critical for identifying vulnerabilities and implementing precise controls
- Project Management: Ability to manage multiple security projects and initiatives
- Documentation: Strong ability to document security procedures, incidents, and lessons learned
- Collaboration: Works effectively with IT teams, developers, compliance, and management
PHYSICAL AND ENVIRONMENTAL REQUIREMENTS
- Ability to work in an office environment with occasional on-site infrastructure work
- Flexibility to respond to security incidents outside regular business hours when necessary
- Travel to office locations or data centers may be required occasionally