A high frequency trading firm is looking to add an Incident Response Lead to their rapidly growing security team. A typical day could include creating and automating security alerts, further improving the enterprises' ability to detect and track known vulnerabilities. This client brings a scientific approach to trading financial products. They have built one of the world's most sophisticated computing environments for research and development. Their researchers are at the forefront of innovation in the world of algorithmic trading. This is an opportunity to focus on a wide range of products while owning and strategically impacting all the firm's global cyber security system.
Qualifications
- 7+ years of experience in cyber security, with specific experience in security operations and vulnerability management
- 3+ years' experience managing a team of engineers
- Ability to empathize, reassure, and respond to sensitive incidents with compassion, professionalism, and clarity
- Threat intelligence, threat detection and threat hunting, especially in automating both
- Experience with Linux (Debian is a huge plus), macOS, and Windows forensics
- Python Scripting experience
- Log analysis on the command line and with platforms such as ELK and Splunk
- Experience with basic data science for anomaly detection
- BS (or equivalent) in Computer Science
- Hybrid position located in NYC
Responsibilities
- Architect and run enterprise security detection and response program to protect company data and IP from both internal and external threats
- Hunt for, detect, and respond to malicious activity and anomalous events on devices and networks
- Create tools to automate this detection and automatically locate and address future vulnerabilities
- Build pipelines for data security and consistently clean and evaluate the data for signs of vulnerability and compromise
- Collaborate closely with our end user support team on investigations, vulnerability scanning across endpoints, responding to end user issues, and answering to software approval requests
- Create and maintain the enterprises data loss prevention rules
- Promote strong cross-functional relationships internally and externally with vendors
Benefits
- Bonus
- Full Benefits
- Amazing workplace and company culture
