Security Operations Manager

COMPANY DESCRIPTION

Tradeweb Markets is a world leader in the evolution of electronic trading. A fintech company serving approximately 2,500 clients – including the world’s largest banks, asset managers, hedge funds, insurance companies, wealth managers and retail clients -- in more than 65 countries across the globe. Since our first trade in 1998, we have helped transform and electronify the fixed income markets. Tradeweb is a culture built on innovation, creativity and collaboration. Through a combination of very talented and driven people, innovative products and solutions, cutting-edge technology, market data, and a vast network of clients, we continue to work together to improve the way financial markets trade.

Mission: Move first and never stop. Collaborate with clients to create and build solutions that drive efficiency, connectivity, and transparency in electronic trading.

Tradeweb Markets LLC ("Tradeweb") is proud to be an EEO Minorities/Females/Protected Veterans/Disabled/Affirmative Action Employer.

https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf

Group Details

Tradeweb’s Security Operations team is on the front lines, protecting Tradeweb’s clients and employees from the constantly evolving threat landscape. This role will help support and enhance our existing Security Operations program as part of our transformation into a hybrid operating model. The ideal candidate will have a combination of hands-on, technical experience and excellent written and verbal communication skills to explain complex issues in non-technical terms. The role will also have a chance to work with subject matter experts within cyber security, across infrastructure, data analytics, application development, and business teams.

Job Responsibilities

• Reporting to the Director of Security Operations, this role will oversee a team of security operations (SOC) engineers that provide 24x7x365 detection and response capabilities for Tradeweb.
• Mature existing processes to provide measurable results across SecOps OKRs.
• As a member of Tradeweb’s technical incident response team, you will be responsible for executing Tradeweb’s technical incident response process focusing on disk/memory forensics, log analysis, evidence handling and formal report creation.
• Collaborate with Tradeweb’s Cyber Threat Intelligence teams to ensure operations engineers are aware of current threat actor tools, techniques and procedures (TTPs).
• Manage relationships with critical security vendors in local regions to ensure they are providing a level of excellence in line with Tradeweb standards.
• Train and mentor security engineers, primarily focused on incident response, threat hunting, and security automation.
• Build internal partnerships with key business stakeholders, particularly those in our Compliance, Infrastructure, and Risk organizations.
• Publish related metrics, key performance indicators (KPIs) and key risk indicators (KRIs) as well as providing regular updates to the senior management.

Qualifications

• Minimum of 10 years of combined experience in information security and related technical disciplines, with at least 6 years focusing on security operations, incident response or cyber threat investigations.
• In-depth experience with Windows and Unix operating environments with a focus on disk and memory forensic analysis.
• Demonstrated experience leading and maturing security teams with a deep technical focus.
• Strong knowledge of SIEM technologies and hands-on experience with at least one of the following technologies: Splunk, ELK, XSIAM, QRadar.
• Ability to translate and operationalize technical, legal, and compliance requirements in a heavily regulated environment.
• Clear and concise communicator, can articulate cyber risk and impact across a wide range of audiences, to ensure decision makers have the information they need.
• Deep knowledge of network security architecture, internet protocols and web service technologies.
• Financial services experience is preferable, or experience in the financial technology (FinTech) area
• CISSP, CISM or equivalent qualifications preferred.