Senior Cloud Security Engineer

About INTERACTIVE BROKERS!

This is Hybrid role (3 days in office /2 days remote)

Interactive Brokers Group has been consistently at the forefront of trading innovation, starting with the invention of the first floor-based handheld computer in 1983. We pride ourselves on being primarily a technology company and challenging the status quo. We push boundaries to offer our clients the best trading platform with the most sophisticated features at the lowest cost. Software development is the lifeblood of our firm, and it shows in our stellar brokerage platform. Interactive Brokers is regularly recognized as a leader in the financial services industry.

About your Team:

As IBKR Cloud Security Engineer you will be responsible for the design, deployment, and operation of a secure cloud infrastructure, while supporting operational innovation, workflow automation, and elevation of IBKR’s security posture within a cloud computing infrastructure. You will possess advanced troubleshooting skills, and be knowledgeable about architecture, engineering, and design principles. He/she will consistently assess the threat landscape and adapt quickly, to protect the business from identified threats. You will work closely with cloud infrastructure and application development teams to review their outputs for security risks and provide guidance on appropriate security practices.

 What will be your responsibilities within IBKR: 

• Develop and maintain secure, resilient enterprise-grade cloud security infrastructure and processes in collaboration with system architects, infrastructure engineers, and application developers.
• Conduct rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts.
• Develop and deploy strong identity and access management (IAM) controls across applications and computing environments.
• Advise on development and utilization of scripts (e.g., Python, Ruby, Perl, etc.) to support custom Extract, Transform and Load (ETL) tools with a security focus for data flow.
• Actively monitor, assess and recommend tactical and strategic initiatives based on new and emerging threats to cloud computing environments.
• Manage and track remediation efforts triggered by security assessments related to cloud computing environments.
• Formulate, document, and implement security improvements that balance risks with business operations efficiency and need for innovation.

 What required skill’s you need:

• Must have 5 years of experience in cybersecurity with at least 2 years of exposure to cloud-based technologies and operations, preferably Amazon Web Services (AWS) or Microsoft Azure.
• Detailed technical understanding of how cloud environments operate “under the hood” (in addition to familiarity with best practices related to how cloud services should be utilized).
• Good understanding of security concepts and technologies.
• Experience with network and host-based monitoring, logging, alerting, and response frameworks.
• Experience in scripting languages, such as Python, PowerShell, Javascript, Ruby, Perl, Unix Shell (bash/ksh), etc.
• Experience with Continuous Integration & Continuous Deployment (CI/CD) technologies, such as Jenkins, CodeBuild, Puppet, etc.

What would be nice to have:

• Experience with creating and deploying Indications of Compromise (IoC), gathering system metrics, and responding to triggered alerts.
• Operational experience in maintaining and administrating the security posture of large-scale deployments.
• Familiarity with common security frameworks and standards, such as NIST CSF, ISO/IEC 27001:27013, CIS CSC, PCI DSS, etc.

 To be successful in this position, you will have the following:

• Self-motivated and able to handle tasks with minimal supervision.
• Superb analytical and problem-solving skills.
• Excellent collaboration and communication (Verbal and written) skills.
• Outstanding organizational and time management skills.

Company Benefits & Perks