Senior Security Engineer
ThinkMarkets is looking for a Senior Security Engineer to help safeguard our organization’s computer networks and systems and join our rapidly growing Chicago office!
As our Senior Security Engineer, you will work closely with the Global Infrastructure and Engineering teams as a Security Subject Matter Expert (SME) to assist with the security design, consultation, and technology implementation for various ThinkMarkets projects and initiatives. You will also be helping to protect from the latest information security threats by assisting with developing, enhancing, and executing documented security procedures and focusing on real-time systems security alerts to ensure the optimal operation of each system. This role should be capable of performing regular pen tests and vulnerability assessments against company resources.
Responsibilities:
- Engineer, implement, and monitor security measures for the protection of computer systems, networks, and confidential company information
- Identify and define system security requirements
- Design computer security architecture and develop detailed cyber security designs
- Prepare and document standard operating procedures and protocols
- Configure and troubleshoot complex security infrastructure devices
- Develop technical solutions and new security tools to mitigate security vulnerabilities and automate repeatable tasks
- Ensure that the company knows as much as possible, as quickly as possible about any security incidents or potential threats
- Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement
Requirements:
- 5+ years of experience with security engineering, ideally at a financial services or trading company
- Direct experience with anti-virus software, intrusion detection, firewalls, and content filtering
- In-depth knowledge of risk assessment tools, technologies, and methods
- Advanced knowledge of disaster recovery, computer forensic tools, technologies, and methods
- Experience planning, researching, and developing security policies, standards, and procedures
- Exceptional ability to communicate network security issues to peers and management
- Ability to read and use the results of mobile code, malicious code, and anti-virus software
- Strong understanding of endpoint security solutions to include File Integrity Monitoring and Data Loss Prevention
- Experience with Vulnerability Management tools (Qualys, Rapid7, Nessus)
- Experience with cyber security assessment tools (Metasploit Framework, Kali, etc)
- Knowledge of Security Frameworks (NIST 800-53, CIS, ISO 27001)