Ph3About us /h3 pWe’re a diverse group of visionary innovators who provide trading and workflow automation software, high-value analytics, and strategic consulting to corporations, central banks, financial institutions, and governments. Founded in 1999, we’ve achieved tremendous growth by bringing together some of the best and most successful financial technology companies in the world. /p pOver 2,000 of the world’s leading corporations, including 50% of the Fortune 500 and 30% of the world’s central banks, trust ION solutions to manage their cash, in-house banking, commodity supply chain, trading, and risk. /p pOver 800 of the world’s leading banks and broker dealers use our electronic trading platforms to operate the world’s financial market infrastructure. /p pION is a rapidly expanding and dynamic group with 13,000 employees and offices in more than 40 cities around the globe, /p pOur ever-expanding global footprint, cutting-edge products, and over 40,000 customers worldwide provide an unparalleled career experience for those who share our vision. /p pLearn more at iongroup.com. /p h3Role Overview /h3 pION Markets Information Security Team is looking to hire a Senior Platform Security Engineer that support the division’s security strategy through definition and implementation of security controls across our platforms, infrastructure, and operational workflows. /p pAs the Senior Platform Security Engineer, you will play a key role in safeguarding our systems,clients and Intellectual Property. You’ll sit at the intersection of security operations, governance risk, and product security, helping to design, operate, and improve a robust security posture for our services. /p pYou will be serving as both a hands-on technical leader and operational responder, working closely with Product, infrastructure and Security Operations teams. /p pWe are looking for a hard-working, dedicated and motivated individual. Excellent communication skills are a must, and the role holder will be expected to cultivate working relationships with other teams and colleagues of varying technical ability. The role would suit a technically strong candidate looking to drive forward career progression within a dedicated security team. Ideally the candidate will have come from related security and architecture roles, focusing on security operations and product development. /p h3Your duties and responsibilities /h3 ul liSupport design and execution of the information security risk management framework /li liWork with Legal, Risk and IT to ensure compliance with NIS2, DORA and / or ISO27K where relevant. /li liMaintain and improve policies, standards and control documentation aligned to regulatory and client obligations. /li liAssist with internal and external audits, client due diligence and exception management. /li liSupport product and engineering teams in adopting DevSecOps and secure design principles. /li liAct as point of escalation during major incidents or zero-day threats for the in-scope entity. /li liLead and continuously improve our detection and response capabilities for the specific entity. /li liServe as a senior incident responder, addressing emerging threats across the environment. /li liCollaborate with infrastructure, network, and cross-functional teams to contain, investigate, and remediate security incidents. /li liConduct root cause analysis and participate in forensic investigations as needed. /li liEnhance system visibility by expanding logging coverage and implementing additional monitoring capabilities. /li liMaintain, update, and regularly test incident response runbooks, containment strategies, and escalation protocols. /li liLead the end-to-end vulnerability management process for ION Markets systems, from identification to remediation. /li liProvide support for security architecture reviews of developed systems to ensure alignment with best practices. /li liThis role may require some overnight, weekend and on-call activities. /li /ul h3Your skills, experience, and qualifications /h3 ul liFluency in Italian and English, as the role requires regular interaction with internal stakeholders, regulatory bodies and clients in the Italian Market /li liDegree / diploma / certifications in a technology-related field and / or relevant working experience; highly desired certifications include : /li liSecurity+, OSCP, CCSP, CEH, GCIH, GMON /li li7+ years' experience in Information Security with proven experience in operations compliance roles. /li liMust have fundamental programming / scripting capabilities (e.g. python, PowerShell, bash, etc.) /li liFamiliarity with NIS2 / DORA and external regulations. /li liStrong understanding of ISO27K /li liA team player with the ability to work independently and unsupervised /li liAbility to own delegated tasks and see them through to completion /li liAbility to manage time and prioritize work to maximize productivity /li liExcellent communication skills (both written and verbal) /li liExceptional attention to detail and quality /li liExcellent problem-solving techniques and trouble analysis skills /li liEndpoint security concepts, controls, and best practices for Servers (e.g. Windows and Linux) /li liGeneral IT networking concepts, protocols, standards and network security concepts, controls, and best practices /li liCryptography fundamentals and data security controls and best practices /li liForensic investigation techniques /li liPrior experience deploying, configuring, managing, and / or operating security technologies is preferred, such as endpoint security (e.g. AV / EPP / EDR), SIEM, DLP, SWG, CASB, UEBA, IDS, IPS, firewalls, IAM / PIM / PAM, vulnerability management, MDM, etc. /li /ul /p #J-18808-Ljbffr