About usWe're visionary innovators who provide trading and workflow automation solutions, high-value analytics, and strategic consulting to corporations, financial institutions, central banks, and governments.
More than 40% of the world's largest companies use our solutions.
We've achieved tremendous growth by bringing together some of the best and most successful financial technology companies in the world.
At ION, we offer careers that provide many opportunities:
- Threat Modeling.
Authentication/authorization standards and implementations
- Application of encryption at rest and in transit
- Certificates/secrets standards and implementations - Managing security in public clouds ( AWS, Azure, GCP), with at least 3 years specific experience in either AWS or Azure.
Secure microservices architectures in a cloud-native environment.
Strong understanding of networking.
Knowledge of different deployment models (Container, Serverless, Cloud, PaaS, IaaS).
Ability to work with diverse, remote, and distributed teams across multiple regions and time zones.
Ability to do research autonomously to always be ahead of any security threat.
SSDLC practices in DevOps, CI/CD environment.
OWASP Top 10, SANS CWE, OpenSAMM, BSIMM, etc.
Penetration testing, vulnerability scanning
- Design security monitoring tools.
Designing pipelines that make use of SCA, SAST, DAST, IAST and RASP solutions.
Qualifications
- SANS/SEC-540:
Cloud Security and DevSecOps Automation
- Systems Security Certified Practitioner (SSCP)
- Certified Information Systems Security Professional (CISSP)
- Certified Authorization Professional (CAP)
- Certified Secure Software Lifecycle Professional (CSSLP)
- HealthCare Information Security and Privacy Practitioner (HCISPP)Experience
- Multi-year experience in Threat Modeling.
A proven track record as architect and consultant, capable of working directly with teams, embedded in the delivery model.
Experience with Kubernetes, Openshift, Service Mesh.
Experience with clouds (AWS, Azure, GCP)
- Experience with getting or maintaining certified standards (i.e.
ISO 27001, PCI DSS, MIL-SPEC)Important notes: