MarketAxess
Senior Information Security Engineer
MarketAxess, New York, New York, us, 10261
About Us
MarketAxess is on a journey to digitally transform one of the world's largest financial markets, enabling the shift from analog, phone-based trading to a fully electronic marketplace. Why does this matter? Because our platform makes trading fixed-income more accessible, ultimately improving transparency, efficiency, and competition in the marketplace. Changing the way an established industry transacts is no easy feat. There will be twists and turns, because no one's ever done this before. But now, more than 2,000 clients around the world rely on our solutions, and that number is only expected to grow in the years ahead. We know where we're going. How we get there is up to us. Join us and help Take Us There.
The Role
The Senior Information Security Engineer within the Security Engineering function of the security department will be responsible for ensuring the security of the organization's digital infrastructure and assets, including IT infrastructure and enterprise applications. They will lead efforts in designing, building, and maintaining security systems, working closely with the IT teams and Business partners to secure MarketAxess Infrastructure. The candidate must have extensive experience in the field of cybersecurity, with a deep understanding of security technologies, threat detection, and risk management, as well as good problem solving and communication skills.
How You'll Help Take Us ThereDesign and develop security controls for complex environments ensure the integration of security controls and compliance requirements for enterprise systemsDevelop, integrate, and maintain security solutions, including firewalls, load balancers, web-application firewalls, intrusion detection/prevention systems (IDS/IPS), SIEMs, endpoint security, and identity and access management (IAM) solutionsDevelop and implement security strategies for cloud platforms (E.g., AWS, Azure, GCP) and servicesLead architecture reviews and assessments for new organization's services, systems, network, infrastructure, and platformsSupport the vulnerability management and exposure management lifecycle from discovery to assessment, reporting, remediation, and validationDevelop, design, implement, integrate, and maintain security systems and products to enhance the organization's security postureIdentify and remediate gaps in existing security tools, processes, and proceduresReview and support classic BAU security reviews and requests, including firewall, proxy, and cloud requestsCreate comprehensive documentation including design documents, operational procedures and installation guides to support maintenance and deployment of security productsConduct research on emerging products, services, protocols, and standards in support of security enhancement and development effortsDevelop and implement security automation scripts and tools to enhance the organization's ability to detect, respond to, and prevent security incidentsWhat We're Looking for
Relevant cybersecurity certifications such as CISSP, CRISC, CGEIT, CISA, or equivalent5+ years of experience in security engineering, with a proven track record in securing systems, networks, and applicationsExperience working in complex, multi-cloud environments (AWS, Azure, GCP)Experience implementing and maintaining enterprise security tools such as Web Application Firewalls, Vulnerability Scanning Utilities, Configuration Assessment, DLP solutions, Mobile Device Management, Anti-Malware and Intrusion Detection and Prevention SystemsWorking knowledge of Vulnerability Management, Configuration Management, Exposure Management, System Design and Architecture, Host and Network Security Best PracticesStrong experience with common information security frameworks such as MITRE ATT&CK, CIS, NIST CSF, ISO 27001Proficiency in scripting and automation (E.g., Python, Bash, PowerShell) and experience in DevSecOps practicesFamiliarity with zero-trust architecture and principles.Experience with emerging technologies such as SOAR Security Orchestration, Automation, and Response) platformsAbility to effectively prioritize and execute tasks in a high-pressure environmentAbility to conduct research into security issues and products as requiredStrong analytical and problem-solving capabilities with attention to detailWhat You Can Expect from Us
Hybrid Environment: Our employees enjoy a mix of working in the office and from homeFree Food: We provide free lunch for employees when they are working in the office. Plus, our offices are stocked with snacksPaid Time Off: Competitive PTO package including vacation and personal days, sick leave and charity daysGenerous Parental Leave: Up to 20 weeks fully paid leave401(k): Dollar-for-dollar employer match up to $17,500Employee Stock Purchase Plan: Employees can purchase MarketAxess common stock at a discountWellness Stipend: We provide employees with up to $1K annually towards gym memberships, home office equipment and moreOnsite Healthcare: We offer convenient access to world-class care through Mount Sinai at our Hudson Yards locationTuition Assistance and Professional Development: Benefit from live and on-demand learning, role-specific training, employee-led Lunch and Learns and guest speakersCore benefits: Highly competitive medical, dental, and vision programs
For job positions in NYC, NY, and other locations where required, the estimated salary range for a new hire into this position is $150,000 USD to $200,000 USD. Actual salary may vary depending on job-related factors, which may include knowledge, skills, experience, and location. You may also be eligible for annual cash incentives, equity, and other benefit programs.
MarketAxess Corporation and its affiliates provide equal employment opportunities to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, veteran status, or any other legally protected characteristic in the location in which the candidate is applying.
All of your information will be kept confidential according to EEO guidelines.
MarketAxess Privacy Notice for Candidates
CCPA Notice at Collection for California Employees and Applicants
MarketAxess is on a journey to digitally transform one of the world's largest financial markets, enabling the shift from analog, phone-based trading to a fully electronic marketplace. Why does this matter? Because our platform makes trading fixed-income more accessible, ultimately improving transparency, efficiency, and competition in the marketplace. Changing the way an established industry transacts is no easy feat. There will be twists and turns, because no one's ever done this before. But now, more than 2,000 clients around the world rely on our solutions, and that number is only expected to grow in the years ahead. We know where we're going. How we get there is up to us. Join us and help Take Us There.
The Role
The Senior Information Security Engineer within the Security Engineering function of the security department will be responsible for ensuring the security of the organization's digital infrastructure and assets, including IT infrastructure and enterprise applications. They will lead efforts in designing, building, and maintaining security systems, working closely with the IT teams and Business partners to secure MarketAxess Infrastructure. The candidate must have extensive experience in the field of cybersecurity, with a deep understanding of security technologies, threat detection, and risk management, as well as good problem solving and communication skills.
How You'll Help Take Us ThereDesign and develop security controls for complex environments ensure the integration of security controls and compliance requirements for enterprise systemsDevelop, integrate, and maintain security solutions, including firewalls, load balancers, web-application firewalls, intrusion detection/prevention systems (IDS/IPS), SIEMs, endpoint security, and identity and access management (IAM) solutionsDevelop and implement security strategies for cloud platforms (E.g., AWS, Azure, GCP) and servicesLead architecture reviews and assessments for new organization's services, systems, network, infrastructure, and platformsSupport the vulnerability management and exposure management lifecycle from discovery to assessment, reporting, remediation, and validationDevelop, design, implement, integrate, and maintain security systems and products to enhance the organization's security postureIdentify and remediate gaps in existing security tools, processes, and proceduresReview and support classic BAU security reviews and requests, including firewall, proxy, and cloud requestsCreate comprehensive documentation including design documents, operational procedures and installation guides to support maintenance and deployment of security productsConduct research on emerging products, services, protocols, and standards in support of security enhancement and development effortsDevelop and implement security automation scripts and tools to enhance the organization's ability to detect, respond to, and prevent security incidentsWhat We're Looking for
Relevant cybersecurity certifications such as CISSP, CRISC, CGEIT, CISA, or equivalent5+ years of experience in security engineering, with a proven track record in securing systems, networks, and applicationsExperience working in complex, multi-cloud environments (AWS, Azure, GCP)Experience implementing and maintaining enterprise security tools such as Web Application Firewalls, Vulnerability Scanning Utilities, Configuration Assessment, DLP solutions, Mobile Device Management, Anti-Malware and Intrusion Detection and Prevention SystemsWorking knowledge of Vulnerability Management, Configuration Management, Exposure Management, System Design and Architecture, Host and Network Security Best PracticesStrong experience with common information security frameworks such as MITRE ATT&CK, CIS, NIST CSF, ISO 27001Proficiency in scripting and automation (E.g., Python, Bash, PowerShell) and experience in DevSecOps practicesFamiliarity with zero-trust architecture and principles.Experience with emerging technologies such as SOAR Security Orchestration, Automation, and Response) platformsAbility to effectively prioritize and execute tasks in a high-pressure environmentAbility to conduct research into security issues and products as requiredStrong analytical and problem-solving capabilities with attention to detailWhat You Can Expect from Us
Hybrid Environment: Our employees enjoy a mix of working in the office and from homeFree Food: We provide free lunch for employees when they are working in the office. Plus, our offices are stocked with snacksPaid Time Off: Competitive PTO package including vacation and personal days, sick leave and charity daysGenerous Parental Leave: Up to 20 weeks fully paid leave401(k): Dollar-for-dollar employer match up to $17,500Employee Stock Purchase Plan: Employees can purchase MarketAxess common stock at a discountWellness Stipend: We provide employees with up to $1K annually towards gym memberships, home office equipment and moreOnsite Healthcare: We offer convenient access to world-class care through Mount Sinai at our Hudson Yards locationTuition Assistance and Professional Development: Benefit from live and on-demand learning, role-specific training, employee-led Lunch and Learns and guest speakersCore benefits: Highly competitive medical, dental, and vision programs
For job positions in NYC, NY, and other locations where required, the estimated salary range for a new hire into this position is $150,000 USD to $200,000 USD. Actual salary may vary depending on job-related factors, which may include knowledge, skills, experience, and location. You may also be eligible for annual cash incentives, equity, and other benefit programs.
MarketAxess Corporation and its affiliates provide equal employment opportunities to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, veteran status, or any other legally protected characteristic in the location in which the candidate is applying.
All of your information will be kept confidential according to EEO guidelines.
MarketAxess Privacy Notice for Candidates
CCPA Notice at Collection for California Employees and Applicants