Digital Forensics/Incident Responder

Company Overview

Interactive Brokers Group, Inc. (Nasdaq: IBKR) is a global financial services company headquartered in Greenwich, CT, USA, with offices in over 15 countries. We have been at the forefront of financial innovation for over four decades, known for our cutting-edge technology and client commitment.

IBKR affiliates provide global electronic brokerage services around the clock on stocks, options, futures, currencies, bonds, and funds to clients in over 200 countries and territories. We serve individual investors and institutions, including financial advisors, hedge funds and introducing brokers. Our advanced technology, competitive pricing, and global market help our clients to make the most of their investments.

Barron's has recognized Interactive Brokers as the #1 online broker for six consecutive years. Join our dynamic, multi-national team and be a part of a company that simplifies and enhances financial opportunities using state-of-the-art technology.

This is a hybrid role (3 days in the office / 2 days remote).

About your team:

We seek an experienced Senior Incident Responder to lead complex incident investigations, drive response strategies, and mentor team members. This role requires demonstrated expertise in incident handling, advanced forensics, and the ability to manage high-impact security events while providing technical leadership to the broader security team.

What will be your responsibilities within IBKR: 

• Lead complex incident investigations and direct response efforts
• Develop and optimize incident response procedures and playbooks
• Coordinate cross-functional response teams during major incidents
• Perform advanced forensic analysis and threat-hunting
• Provide technical mentorship to junior team members
• Interface with executive stakeholders during significant incidents
• Conduct root cause analysis and post-incident reviews
• Improve detection capabilities and response procedures
• Lead threat-hunting initiatives based on emerging threats

Which skills are required:

• 7+ years of hands-on incident response experience
• Deep expertise in digital forensics and malware analysis
• Strong experience with enterprise IR tools and SIEM platforms
• Advanced knowledge of Windows and Linux forensics
• Expertise in network forensics and threat hunting
• Proven track record managing major security incidents
• Experience with cloud security (AWS, Azure, GCP)
• Strong understanding of adversary TTPs

Technical Expertise
Advanced proficiency in:

• Enterprise SIEM platforms
• EDR/XDR solutions
• Forensic analysis tools
• Malware analysis
• Threat intelligence platforms
• Network protocol analysis
• Memory forensics
• Log analysis and correlation
• Scripting (Python, PowerShell)

Professional Qualifications

• Relevant certifications such as GCFA, GCIH, GCIA, CISSP, CISM, EnCE, CCFP or similar advanced certifications

Leadership Skills

• Proven team leadership experience
• Excellence in crisis management
• Strong project management abilities
• Executive communication skills
• Strategic thinking and planning
• Mentoring and training capabilities

Education

• Bachelor's degree in Computer Science, Cybersecurity, or related field
• Advanced degree preferred
• Continuous professional development

Additional Requirements

• Available for 24/7 incident response rotation
• Ability to lead high-stress incident response situations
• Experience presenting to executive stakeholders
• Track record of process improvement initiatives

To be successful in this position, you will have the following:

• Self-motivated and able to handle tasks with minimal supervision.
• Superb analytical and problem-solving skills.
• Excellent collaboration and communication (Verbal and written) skills.
• Outstanding organizational and time management skills.

Company Benefits & Perks