IT Security Engineer

Overview

Connecting clients to markets – and talent to opportunity

With 4,300 employees and over 400,000 retail and institutional clients from more than 80 offices spread across five continents, we’re a Fortune-100, Nasdaq-listed provider, connecting clients to the global markets – focusing on innovation, human connection, and providing world-class products and services to all types of investors.

At StoneX, we offer you the opportunity to be part of an institutional-grade financial services network that connects companies, organizations, and investors to the global markets ecosystem. As a team member, you'll benefit from our unique blend of digital platforms, comprehensive clearing and execution services, personalized high-touch support, and deep industry expertise. Elevate your career with us and make a significant impact in the world of global finance.

Corporate: Engage in a deep variety of business-critical activities that keep our company running efficiently. From strategic marketing and financial management to human resources and operational oversight, you’ll have the opportunity to optimize processes and implement game-changing policies.

Responsibilities

Position Purpose

The security engineer is responsible for implementing, maintaining, monitoring and managing secure solutions. The engineer delivers these solutions in accordance with the organization’s architectural designs, best practices, and regulatory or compliance requirements. As risks change, the security engineer is responsible for recommending modifications and enhancements to ensure the organization is evolving with the threat landscape.  

Primary Duties

• Research, recommend, perform proof of concepts (POCs), and implement information security solutions that identify and/or protect against potential threats. 

• Continually maintain and mature security products to align with business needs. 

• Document enterprise security products, their implementation, associated procedures, and team responsibilities. 

• Assist in identifying opportunities to improve our processes. 

• Act as point of contact with vendors for security products. 

• Act as a point of escalation for security products. 

• Assist with incident response and help triage major security events and incidents with Security Operations personnel. 

• Ability to understand business requirements and align them to security solutions. 

• Respond to and handle service and escalation tickets within SLA expectations. 

• Conduct performance testing to stress the limitations of security solutions while at the same time ensuring business innovation and day-to-day processes are not negatively impacted 

Qualifications

What makes you land in this role

• Good understanding of a wide range of security tools and concepts. This includes Endpoint Detection and Response (EDR), secure email gateways, vulnerability management, threat intelligence, web security gateways, Cloud App Security Brokers (CASB), and Data Loss Prevention (DLP).  

• Basic understanding of additional technical concepts such as identity, networking, endpoints (Windows, MacOS, iOS, Android), servers (Linux and Windows), and scripting languages (Python and PowerShell). 

• General knowledge of security industry standards (NIST, PCI, ISO), best practices (ITIL), regulations (SOX, FINRA), news, and other relevant cybersecurity information. 

• Individual must be able to perform with minimal supervision of routine duties; must demonstrate ability to solve practical problems and deal with a variety of situations where only limited standardization exists. 

• Communicate technical issues and concepts both verbally and in writing to audiences of varying technical backgrounds.  

• Good organizational skills are a must as well as the ability to work successfully within a team.  

• 7-10+ years of overall technology experience. Prefer a diverse background including security, networking, compute, storage, and endpoint. 

• 7-10+ years of experience as a security analyst or engineer.

• #LI-Hybrid #LI-ND1