The Role:
ION Markets Information Security Team is looking to hire a Platform Security Engineer that support the division’s security strategy through definition and implementation of security controls across our platforms, infrastructure, and operational workflows.
As the Platform Security Engineer, you will be responsible for designing and implementing end-to-end security controls across ION Markets on-premises infrastructure and other internal platforms. The role spans security architecture, engineering, and operations with a strong focus on automation, detection and secure by design principles. Additionally, as part of the role you will be participating in threat detection, incident response and vulnerability management remediation.
You will be serving as an operational responder, working closely with Product, infrastructure and Security Operations teams.
We are looking for a hard-working, dedicated and motivated individual. Excellent communication skills are a must, and the role holder will be expected to cultivate working relationships with other teams and colleagues of varying technical ability. The role would suit a technically strong candidate looking to drive forward career progression within a dedicated security team. Ideally the candidate will have come from related security and architecture roles, focusing on security operations and product development.
Key Responsibilities
Serve as a senior incident responder, addressing emerging threats across the environment.Collaborate with infrastructure, network, and cross-functional teams to contain, investigate, and remediate security incidents.Conduct root cause analysis and participate in forensic investigations as needed.Enhance system visibility by expanding logging coverage and implementing additional monitoring capabilities.Maintain, update, and regularly test incident response runbooks, containment strategies, and escalation protocols.Lead the end-to-end vulnerability management process for ION Markets systems, from identification to remediation.Provide support for security architecture reviews of developed systems to ensure alignment with best practices.Stay up to date with the latest security threats, news, intelligence, tactics, techniques, and vulnerabilities; conduct research and analysis to assess potential impact and exposure.Perform proactive threat hunting activities, and manage the triage, investigation, and escalation of security alerts.Develop Standard operating procedures for operations & architecture activities.
Required Skills, Experience and Qualifications
Degree/diploma/certifications in a technology-related field and/or relevant working experience; highly desired certifications include:Pen Test+, Security+, OSCP, CCSP, CEH, GCIH, GMON.7+ years' experience in Information Security or Security Architecture roles.Must have fundamental programming/scripting capabilities (e.g. python, PowerShell, bash, etc.).Must have in-depth understanding of operating systems (Windows/Linux).A team player with the ability to work independently and unsupervised.Ability to own delegated tasks and see them through to completion.Ability to manage time and prioritize work to maximize productivity.Excellent communication skills (both written and verbal).Exceptional attention to detail and quality.Excellent problem-solving techniques and trouble analysis skills.Endpoint security concepts, controls, and best practices for Servers (e.g. Windows and Linux).General IT networking concepts, protocols, standards and network security concepts, controls, and best practices.Cryptography fundamentals and data security controls and best practices.Forensic investigation techniques.Prior experience deploying, configuring, managing, and/or operating security technologies is preferred, such as endpoint security (e.g. AV/EPP/EDR), SIEM, DLP, SWG, CASB, UEBA, IDS, IPS, firewalls, IAM/PIM/PAM, vulnerability management, MDM, etc. 
