Offer summary

Qualifications:

Bachelor’s degree in Information Security, Information Systems, or a related field with a minimum of 5 years of experience or 7 years in the information security field., Proven work experience as a system security engineer or information security engineer., Excellent understanding of public cloud infrastructure and services, particularly AWS and Azure., Strong analytical and problem-solving skills with the ability to communicate security concepts effectively..

Key responsabilities:

Develop and maintain a security technology strategy for cloud and datacenter environments.

Perform vulnerability assessments and manage security threats to ensure environments are secured and documented.

Act as a project security lead and manage security-related initiatives as they arise.

Participate in security incident response and manage standard operating procedures and protocols.

Job description

#WeAreTradeStation

Who We Are:

TradeStation is an online brokerage firm seeking to level the playing field for self-directed investors and traders, empowering them to claim their individual financial edge. At TradeStation, we're continuously pushing the boundaries of what's possible, encouraging out-of-the-box thinking and relentless search for innovation.

What We Are Looking For:

We are looking for a Sr. Security Engineer who will be responsible for the engineering, design, implementation, maintenance, monitoring, analysis, and administration of TradeStation’s security solutions and security events. The Sr. Security Engineer will also establish procedures, and, wherever possible, automate routine day-to-day tasks to reduce operational overhead. The Engineer will act as a project security lead as a well-rounded subject matter expert in the Information Security domain. Both cloud and on-prem technologies and solutions are within scope.

What You’ll Be Doing:

Develop and maintain a robust security technology strategy designed to address risks associated with cloud and datacenter environments
Recommend, implement, configure, and maintain technical security solutions designed to protect information assets both on-prem and cloud-based
Perform vulnerability assessments, security controls checks, and reporting
Identify and define security requirements while working with the Project and Development teams
Manage current security threats and solutions to ensure public cloud and on-prem environments are properly secured, monitored, and documented
Manage network control systems/equipment, network diagrams and firewall configurations
Participate in security incident response through in-depth, technical analysis
Manage standard operating procedures and protocols
Manage security related initiatives as they arise

The Skills You Bring:

Proven work experience as a system security engineer or information security engineer
Experience securing multi public cloud environments
Excellent understanding/working knowledge of the public cloud infrastructure and services in AWS (IAM, VPC, KMS, CloudWatch, Systems Manager, S3, RDS, Route53, Lambda, AWS Config, Azure PaaS, Azure networking, Azure Security Center, etc.)
Experience with CyberArk identity and access management solutions. Familiarity with implementing, managing, and troubleshooting CyberArk’s password and privileged access management functionalities.
Ability to actively assess existing cloud implementations, identifying security issues/ prioritizing fixes and delegating to junior technical resources appropriately
Ability to engineer and implement public cloud security tools and techniques to ensure the ongoing security and compliance of all public cloud implementations
Experience working within an environment using DevOps and CI/CD strongly preferred
Direct experience with engineering, deploying, managing and supporting various security solutions including firewalls, IDS/IPS solutions, endpoint security, authentication systems, log management, content filtering, vulnerability scanning tools, etc.
Direct experience designing secure networks, systems and application architectures
Familiarity with web related technologies such as web applications, web services, and service-oriented architectures along with network/web related protocols
Direct experience performing security incident response
Experience planning, researching and developing security policies, standards and procedures
Thorough understanding of the latest security principles, techniques, and tooling
Able to multitask and prioritize in a dynamic environment with continuously shifting priorities
Ability to communicate network security concepts and issues to peers and management
Possess and maintain up-to-date understanding of emerging trends in InfoSec including research of the latest security products to combat these threats
Strong analytical and problem-solving skills
Excellent verbal and written communication skills
Demonstrated personal initiative in maintaining a continuous high level of professional knowledge in areas of security and risk management

Minimum Qualifications:

Bachelor’s degree in Information Security, Information Systems, or a related field with a minimum of 5 years of experience OR 7 years of demonstrable progressive work in the information security field

Desired Qualifications:

One or more of the following certifications strongly preferred:

CISSP (and/or other ISC2 certifications)
SANS GIAC certifications
CEH, OSCP, or other penetration testing certifications
Other industry recognized certifications or accreditations

What We Offer:

Collaborative work environment
Competitive Salaries
Yearly bonus
Comprehensive benefits for you and your family starting Day 1
Unlimited Paid Time Off
Flexible working environment
TradeStation Account employee benefits, as well as full access to trading education materials
Pay Range (US) $150-185K (Countries outside of the US have differing ranges in accordance with local labor markets)

TradeStation provides equal employment opportunities to current and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, sexual orientation, age, pregnancy, disability, handicap, citizenship, veteran or marital status, or any other legally recognized status entitled to protection under federal, state, or local anti-discrimination laws.

Required profile