Markets Product Security Engineer - UK

ION Group
London
1 month ago
Create job alert

ION Group

ION financial software improves decision making, simplifies complicated processes and empowers you by providing the right tools.

The Role:
This is an amazing opportunity to work with the Information Security and Compliance Team at ION. As a Product Security Engineer, you would be the key enabler of secure and compliant products. You should have knowledge of attack paths across the technology stack, including tactics, techniques, and procedures (TTPs) used by adversaries to exploit vulnerabilities. You will be a trusted advisor throughout the product development lifecycle, incorporating knowledge of emerging threats, business goals, and system design to improve platform security posture. You will be responsible for aligning the Markets security strategy, security design, and controls engineering to the product roadmap. You will also be responsible for providing transparency to leadership on product control performance and associated risk.

Key Responsibilities:

  • Within the Product Security Team as part of the ION Markets CISO function, you will deal with the following activities:
  • Monitor and identify security events and emerging threats associated with the product line you are managing and any dependencies;
  • Act as the interface between CSIRT and Product teams as part of security incident activities;
  • Deliver threat modelling and hunting to identify vulnerabilities in product design and provide control recommendations to mitigate those risks;
  • Engage in architecture and design reviews to ensure product alignment with Security strategy and industry best practices;
  • Stay up to date with industry trends, best practices, and regulatory standards that may impact product implementations;
  • Support the engineering of control solutions where existing offerings are not available;
  • Provide security expertise during incident and problem management;
  • Produce threat intelligence briefings and other work products to share information across the organisation;
  • Respond to ad-hoc requests for platform security-related guidance;
  • This role may require some overnight, weekend, and on-call activities.

Required Skills, Qualifications and Experience:

  • Knowledge of:
  • Working within the financial services industry, or other highly regulated industries in a technical role.
  • Information security management, governance, and compliance principles, practices, laws, rules, and regulations, e.g., NIST, ISO, NIS, DORA, and GDPR;
  • Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols;
  • Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration, e.g., CIS, CSF;
  • Skills in:
  • Security Tooling: Proficiency in common security tools, such as SIEMs, vulnerability scanners, firewalls, and EDR products;
  • Scripting: Proficiency in scripting languages like Python, BASH, or PowerShell;
  • Security Incident Management: Ability to assist with the detection, response, and recovery of escalated security incidents and manage backlog/lessons learned actions;
  • Risk Assessment: Proficiency in conducting security risk assessments and providing thorough post-event analyses;
  • Security Expertise: Providing security expertise during incident and problem management;
  • Communication: Strong communication skills to explain complex security issues to both technical and non-technical audiences.
  • Ability to:
  • Effectively communicate technical issues to diverse audiences, both in writing and verbally;
  • Handle sensitive and confidential matters, situations, and data;
  • Understand and follow broad and complex instructions;
  • Comprehend technical language and to confer, analyse, and write in an objective, lucid manner;
  • Work independently and prioritize multiple tasks and adapt to needed changes;
  • Remain calm under high pressure/difficult situations.

Preferred Certifications:

  • GCIH;
  • CSEC;
  • CSSLP;
  • CISSP;
  • CASP+

ION is a rapidly expanding and dynamic group with 13,000 employees and offices in more than 40 cities around the globe. Our ever-expanding global footprint, cutting-edge products, and over 40,000 customers worldwide provide an unparalleled career experience for those who share our vision.

ION is committed to maintaining a supportive and inclusive environment for people with diverse backgrounds and experiences. We respect the varied identities, abilities, cultures, and traditions of the individuals who comprise our organization and recognize the value that different backgrounds and points of view bring to our business. ION adheres to an equal employment opportunity policy that prohibits discriminatory practices or harassment against applicants or employees based on any legally impermissible factor.

#J-18808-Ljbffr

Related Jobs

View all jobs

Markets Product Security Engineer – UK

Security Engineering Director - Detection & Response - Remote Across Anz

Senior Security Engineer, Brokerage & Money

Cyber Security Engineer | Privileged Access Management

Security Architect

Product Security Engineer

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Job-Hunting During Economic Uncertainty: Cyber Security Edition

The cybe rsecurity sector sits at the forefront of today’s digital landscape, defending businesses and governments alike from increasingly sophisticated threats. From incident response and network security to cloud protections and zero-trust architectures, cyber security professionals tackle an ever-evolving array of challenges. Yet, even this mission-critical field is not immune to economic turbulence. When broader financial markets experience uncertainty—whether through global recessions, regional downturns, or unexpected macro events—the hiring climate can shift, making roles more selective and budgets tighter. For job seekers in cyber security, this can be disconcerting. You might discover that once-abundant vacancies have become scarce, competition for the remaining positions is fiercer, or company priorities pivot away from large-scale expansions toward essential, cost-justified security projects. At the same time, data breaches and cyberattacks don’t pause during economic slowdowns—if anything, they may escalate as bad actors exploit organizational vulnerabilities. This paradox means that while the market feels tough, demand for cyber security expertise remains robust. In this article, we’ll look at: Why economic uncertainty affects cyber security hiring trends. Strategies for staying competitive, even if the number of open roles shrinks. Methods to highlight your skills, adapt to shifting priorities, and network effectively. Approaches for preserving mental well-being during prolonged searches or uncertain feedback loops. How www.cybersecurityjobs.tech can help you find the ideal security-focused role. By proactively sharpening your skill set, tailoring your professional profile, and engaging with a focused community, you can secure a rewarding cyber security job—even when the broader market feels volatile.

Careers

How to Achieve Work-Life Balance in Cyber Security Jobs: Realistic Strategies and Mental Health Tips

Cyber security is one of today’s most vital and rapidly expanding sectors. As data breaches, ransomware, and other cyber threats continue to evolve, the demand for skilled professionals is surging across industries—from finance and healthcare to government and e-commerce. Whether you’re a penetration tester, security analyst, or threat intelligence expert, you play a key role in safeguarding digital infrastructure and sensitive information. This high-stakes environment, however, often comes with intense pressure. Long hours, constant vigilance, and an ever-changing threat landscape can make it challenging to find time for personal well-being. Many cyber security specialists report difficulty striking a sustainable work-life balance, unsure if it’s even possible in a field that never truly sleeps. Yet, as concerns about mental health and burnout become more pressing, professionals and employers alike are seeking better ways to combine career advancement with a fulfilling personal life. In this comprehensive article, we’ll explore how to achieve a work-life balance in cyber security. You’ll discover strategies for managing 24/7 threat alerts, the importance of realistic expectations, ways to maintain mental health in high-intensity roles, and tips for setting boundaries without compromising your professional growth. Whether you’re new to this dynamic arena or already an established specialist, these insights can help you thrive personally and professionally in the fast-paced world of cyber security.

Careers

Transitioning from Academia to the Cyber Security Industry: How Researchers Can Harness Their Skills to Protect Commercial Environments

Cyber security has become a mission-critical field in an era where data breaches, ransomware attacks, and sophisticated hacking techniques threaten businesses and public institutions alike. As digital transformation touches nearly every facet of modern life, the need for highly skilled individuals capable of defending systems and networks continues to grow. For PhDs and academic researchers with expertise in areas like cryptography, network security, or threat intelligence, this presents an exciting opportunity to deploy your analytical prowess in a high-impact, fast-paced commercial setting. In this guide we’ll explore how academics can successfully pivot from the research lab to the cyber security industry. Learn how to apply rigorous, theory-driven approaches to real-world challenges, from designing secure software architectures to neutralising advanced persistent threats. By embracing the industry’s urgency and end-to-end mindset, you can transform your scholarly insights into robust, market-facing security solutions that protect companies and users on a global scale.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.