Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to enhance product security and ensure compliance throughout the development lifecycle.
- Company: ION is a leading provider of trading software and analytics, trusted by top financial institutions globally.
- Benefits: Enjoy a dynamic work environment with opportunities for growth, remote work options, and corporate perks.
- Why this job: Be part of a diverse team making a real impact in the financial technology sector.
- Qualifications: Knowledge of information security principles and proficiency in security tools and scripting languages required.
- Other info: This role may involve occasional overnight and weekend work.
The predicted salary is between 43200 - 72000 £ per year.
This is an amazing opportunity to work with the Information Security and Compliance Team at ION. As a Product Security Engineer, you would be the key enabler of secure and compliant products. You should have knowledge of attack paths across the technology stack, including tactics, techniques, and procedures (TTPs) used by adversaries to exploit vulnerabilities. You will be a trusted advisor throughout the product development lifecycle, incorporating knowledge of emerging threats, business goals, and system design to improve platform security posture. You will be responsible for aligning the Markets security strategy, security design, and controls engineering to the product roadmap. You will also be responsible for providing transparency to leadership on product control performance and associated risk.
Key Responsibilities:
- Monitor and identify security events and emerging threats associated with the product line you are managing and any dependencies;
- Act as the interface between CSIRT and Product teams as part of security incident activities;
- Deliver threat modelling and hunting to identify vulnerabilities in product design and provide control recommendations to mitigate those risks;
- Engage in architecture and design reviews to ensure product alignment with security strategy and industry best practices;
- Stay up to date with industry trends, best practices, and regulatory standards that may impact product implementations;
- Support the engineering of control solutions where existing offerings are not available;
- Provide security expertise during incident and problem management;
- Produce threat intelligence briefings and other work products to share information across the organization;
- Respond to ad-hoc requests for platform security-related guidance;
- This role may require some overnight, weekend, and on-call activities.
Required Skills, Qualifications, and Experience:
- Knowledge of working within the financial services industry, or other highly regulated industries in a technical role.
- Information security management, governance, and compliance principles, practices, laws, rules, and regulations, e.g., NIST, ISO, NIS, DORA, and GDPR;
- Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols;
- Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration, e.g., CIS, CSF;
Skills in:
- Security Tooling: Proficiency in common security tools, such as SIEMs, vulnerability scanners, firewalls, and EDR products;
- Scripting: Proficiency in scripting languages like Python, BASH, or PowerShell;
- Security Incident Management: Ability to assist with the detection, response, and recovery of escalated security incidents and manage backlog/lessons learned actions;
- Risk Assessment: Proficiency in conducting security risk assessments and providing thorough post-event analyses;
- Security Expertise: Providing security expertise during incident and problem management;
- Communication: Strong communication skills to explain complex security issues to both technical and non-technical audiences.
Ability to:
- Effectively communicate technical issues to diverse audiences, both in writing and verbally;
- Handle sensitive and confidential matters, situations, and data;
- Understand and follow broad and complex instructions;
- Comprehend technical language and to confer, analyze, and write in an objective, lucid manner;
- Work independently and prioritize multiple tasks and adapt to needed changes;
- Remain calm under high pressure/difficult situations.
Preferred Certifications:
- GCIH;
- CSEC;
- CSSLP;
- CISSP;
- CASP+.
We’re a diverse group of visionary innovators who provide trading and workflow automation software, high-value analytics, and strategic consulting to corporations, central banks, financial institutions, and governments. Founded in 1999, we’ve achieved tremendous growth by bringing together some of the best and most successful financial technology companies in the world. Over 2,000 of the world’s leading corporations, including 50% of the Fortune 500 and 30% of the world’s central banks, trust ION solutions to manage their cash, in-house banking, commodity supply chain, trading, and risk. Over 800 of the world’s leading banks and broker-dealers use our electronic trading platforms to operate the world’s financial market infrastructure. ION is a rapidly expanding and dynamic group with 13,000 employees and offices in more than 40 cities around the globe. Our ever-expanding global footprint, cutting-edge products, and over 40,000 customers worldwide provide an unparalleled career experience for those who share our vision. ION is committed to maintaining a supportive and inclusive environment for people with diverse backgrounds and experiences. We respect the varied identities, abilities, cultures, and traditions of the individuals who comprise our organization and recognize the value that different backgrounds and points of view bring to our business. ION adheres to an equal employment opportunity policy that prohibits discriminatory practices or harassment against applicants or employees based on any legally impermissible factor.
Markets Product Security Engineer employer: ION
Contact Detail:
ION Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Markets Product Security Engineer
✨Tip Number 1
Familiarise yourself with the latest trends in information security, especially within the financial services sector. Understanding the specific challenges and regulations, such as NIST and GDPR, will help you demonstrate your knowledge during discussions.
✨Tip Number 2
Network with professionals in the cybersecurity field, particularly those who work in product security roles. Engaging with industry experts can provide insights into the role and may even lead to referrals or recommendations.
✨Tip Number 3
Prepare to discuss your experience with security tooling and scripting languages like Python or PowerShell. Be ready to share specific examples of how you've used these skills to address security challenges in previous roles.
✨Tip Number 4
Stay updated on emerging threats and vulnerabilities by following relevant blogs, forums, and publications. This knowledge will not only enhance your expertise but also show your commitment to continuous learning in the field.
We think you need these skills to ace Markets Product Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security, particularly within the financial services industry. Emphasise your knowledge of security frameworks like NIST and GDPR, as well as any specific tools or languages mentioned in the job description.
Craft a Compelling Cover Letter: In your cover letter, explain why you are passionate about product security and how your skills align with ION's needs. Mention specific experiences where you've successfully identified vulnerabilities or improved security posture in previous roles.
Showcase Relevant Skills: Clearly outline your proficiency in security tooling, scripting languages, and incident management. Use examples to demonstrate your ability to communicate complex security issues effectively to both technical and non-technical audiences.
Highlight Continuous Learning: Mention any relevant certifications you hold, such as GCIH or CISSP, and express your commitment to staying updated on industry trends and best practices. This shows that you are proactive and dedicated to your professional development.
How to prepare for a job interview at ION
✨Understand the Security Landscape
Familiarise yourself with the latest trends in information security, especially within the financial services sector. Be prepared to discuss specific attack paths and TTPs that are relevant to the role, demonstrating your knowledge of how adversaries exploit vulnerabilities.
✨Showcase Your Technical Skills
Highlight your proficiency in security tools and scripting languages during the interview. Be ready to provide examples of how you've used these skills in past roles, particularly in incident management or risk assessment scenarios.
✨Communicate Clearly
Practice explaining complex security concepts in simple terms. The ability to communicate effectively with both technical and non-technical audiences is crucial, so prepare to demonstrate this skill through examples or hypothetical scenarios.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving abilities in high-pressure situations. Think of past experiences where you had to manage security incidents or conduct risk assessments, and be ready to discuss your thought process and actions taken.
