Senior Cloud Security Engineer

About INTERACTIVE BROKERS!

This is a hybrid role (three days in the office/two days remote).

Interactive Brokers Group has been consistently at the forefront of trading innovation, starting with the invention of the first floor-based handheld computer in 1983. We pride ourselves on being primarily a technology company and challenging the status quo. We push boundaries to offer our clients the best trading platform with the most sophisticated features at the lowest cost. Software development is the lifeblood of our firm, and it shows in our stellar brokerage platform. Interactive Brokers is regularly recognized as a leader in the financial services industry.

About your Team:

As IBKR Cloud Security Engineer, you will be responsible for designing, deploying, and operating a secure cloud infrastructure while supporting operational innovation, workflow automation, and elevation of IBKR’s security posture within a cloud computing infrastructure. You will possess advanced troubleshooting skills and be knowledgeable about architecture, engineering, and design principles. They will consistently assess the threat landscape and adapt quickly to protect the business from identified threats. You will work closely with cloud infrastructure and application development teams to review their outputs for security risks and provide guidance on appropriate security practices.

What will be your responsibilities within IBKR: 

• Develop and maintain secure, resilient enterprise-grade cloud security infrastructure and processes in collaboration with system architects, infrastructure engineers, and application developers.
• Conduct rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts.
• Develop and deploy strong identity and access management (IAM) controls across applications and computing environments.
• Advise on developing and utilizing scripts (e.g., Python, Ruby, Perl, etc.) to support custom Extract, Transform and Load (ETL) tools with a security focus on data flow.
• Actively monitor, assess and recommend tactical and strategic initiatives based on new and emerging threats to cloud computing environments.
• Manage and track remediation efforts triggered by security assessments related to cloud computing environments.
• Formulate, document, and implement security improvements that balance risks with business operations efficiency and the need for innovation.

Which skills are required:

• Must have five years of experience in cybersecurity with at least two years of exposure to cloud-based technologies and operations, preferably Amazon Web Services (AWS) or Microsoft Azure.
• Detailed technical understanding of how cloud environments operate “under the hood” (in addition to familiarity with best practices related to how cloud services should be utilized)
• Good understanding of security concepts and technologies
• Experience with network and host-based monitoring, logging, alerting, and response frameworks.
• Experience in scripting languages like Python, PowerShell, Javascript, Ruby, Perl, Unix Shell (bash/ksh), etc.
• Experience with Continuous Integration & Continuous Deployment (CI/CD) technologies, such as Jenkins, CodeBuild, Puppet, etc.

What would be nice to have:

• Experience creating and deploying Indications of Compromise (IoC), gathering system metrics, and responding to triggered alerts.
• Operational experience in maintaining and administrating the security posture of large-scale deployments
• Familiarity with common security frameworks and standards, such as NIST CSF, ISO/IEC 27001:27013, CIS CSC, PCI DSS, etc.

To be successful in this position, you will have the following:

• Self-motivated and able to handle tasks with minimal supervision.
• Superb analytical and problem-solving skills.
• Excellent collaboration and communication (Verbal and written) skills
• Outstanding organizational and time management skills

Company Benefits & Perks

• Competitive salary, annual performance-based bonus and stock grant
• Retirement plan 401(k) with a competitive company match
• Excellent health and wellness benefits, including medical, dental, and vision benefits and a company-paid medical healthcare premium
• Wellness screenings and assessments, health coaches and counseling services through an Employee Assistance Program (EAP)
• Paid time off and a generous parental leave policy
• Daily company lunch allowance provided, and a fully stocked kitchen with healthy options for breakfast and snack
• Corporate events, including team outings, dinners, volunteer activities and company sports teams
• Education reimbursement and learning opportunities
• Modern offices with multi-monitor setups