Remote Position - must reside in Florida, Texas, Illinois, New York, New Jersey, Colorado, Idaho, Massachusetts, Michigan, Minnesota, Missouri, North Carolina, South Carolina, Utah or Virginia
Who We Are:
TradeStation is the home of those born to trade. As an online brokerage firm and trading ecosystem, we are focused on delivering the ultimate trading experience for active traders and institutions. We continuously push the boundaries of what's possible, encourage out-of-the-box thinking, and relentlessly search for like-minded innovators.
At TradeStation, we are building an AI-First culture. We expect team members to embrace AI as a core part of their daily workflow, whether that’s using AI to accelerate development, enhance decision-making, improve client outcomes, or streamline internal processes. We hire, grow, and promote people who can harness AI responsibly and creatively. We treat AI as a partner in problem-solving, not just a tool; following our governance standards to ensure AI is used ethically, securely, and transparently. If you join us, you’re joining a culture where AI is how we work.
Are you ready to make yourself at home?
What We Are Looking For:
We are looking for a Security Engineer who will be responsible for the engineering, design, implementation, maintenance, monitoring, analysis, and administration of TradeStation’s security solutions and security information. The Security Engineer will also establish procedures, and, wherever possible, automate tasks to reduce operational overhead. The role will also act as a security project lead and subject matter expert in the Information Security domain.
What You’ll Be Doing:
- Design, implement, configure, and troubleshoot enterprise security technologies and infrastructure
- Perform vulnerability assessments, validate security controls, and drive remediation efforts across on-premises and cloud environments
- Partner with infrastructure, development, and project teams to integrate security controls throughout the system development lifecycle
- Secure and continuously improve public cloud environments by implementing security best practices and monitoring controls
- Collaborate with Network and Systems Engineering teams to design, document, and maintain network security architectures and firewall configurations
- Lead and participate in security incident response, including technical analysis, containment, eradication, and post-incident reviews
- Develop and maintain security documentation, including SOPs, technical standards, runbooks, and response playbooks
- Evaluate and implement security technologies and automation to improve security posture and operational efficiency
- Support security operations through on-call rotation and after-hours incident response as needed
- Support security assessments, audits, and compliance/risk management initiatives with technical expertise
- Automate repetitive security tasks using AI or orchestration tools
- Research emerging threats and attack techniques to proactively strengthen defensive capabilities
The Skills You Bring:
- Hands-on experience designing, implementing, administering, and supporting enterprise security technologies, including firewalls, IDS/IPS, EDR, authentication and identity solutions, SIEM platforms, vulnerability management tools, email security, NDR, deception technologies, AI usage filtering, and web/content filtering solutions
- Experience implementing and supporting Privileged Access Management (PAM) solutions, preferably CyberArk
- Strong understanding of security architecture principles, including secure network, infrastructure, and application design
- Experience securing public cloud environments, with a solid understanding of cloud security principles, cloud-native security services, SaaS platforms, and third-party security tools; experience with AWS and Azure strongly preferred
- Experience performing vulnerability assessments, validating security controls, and partnering with system owners to prioritize and remediate risk
- Experience investigating security incidents, including log analysis, endpoint investigations, network forensics, and malware analysis
- Working knowledge of networking concepts, common protocols, web technologies, APIs, and modern application architectures
- Experience with security analysis and troubleshooting tools such as Wireshark, endpoint forensic utilities, email analysis tools, and virtualization platforms (VMware, VirtualBox)
- Experience developing and maintaining security policies, standards, procedures, and operational runbooks
- Experience providing support and escalation services to a Security Operations Center
- Understanding of security frameworks and regulatory requirements such as NIST, CIS Controls, ISO 27001, or similar
- Experience collaborating with infrastructure, cloud, development, and engineering teams to integrate security into enterprise technologies and business initiatives
- Strong organizational and time-management skills, with the ability to manage multiple priorities, adapt to changing business needs, and drive initiatives from planning through implementation
- Strong analytical, troubleshooting, and problem-solving skills, with the ability to evaluate complex technical issues and recommend effective solutions
- Excellent verbal and written communication skills, with the ability to explain technical security concepts to both technical and non-technical audiences
- Self-motivated and proactive, with a demonstrated passion for cybersecurity and a commitment to continuously learning about emerging threats, technologies, and best practices
Minimum Qualifications:
- Bachelor’s degree in Information Security, Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent practical experience.
- Minimum of five (5) years of progressive experience in Information Security, Cybersecurity, or a related technical discipline
- 3+ years of experience as an Information Security Engineer, Security Engineer, Systems Security Engineer, or in a similar cybersecurity role
- Ability to travel occasionally to domestic and international company offices or other business locations for meetings, training, project work, or other business needs
Desired Qualifications:
- One or more of the following certifications strongly preferred:
- CISSP (and/or other ISC2 certifications)
- SANS GIAC certifications
- CEH, OSCP, or other penetration testing certifications
- Other industry recognized certifications or accreditations
What We Offer:
- Collaborative work environment
- Competitive Salaries
- Yearly bonus
- Comprehensive benefits for you and your family starting Day 1
- Unlimited Paid Time Off
- Flexible working environment
- TradeStation Account employee benefits, as well as full access to trading education materials
- Pay Range (US) $127-150K (Countries outside of the US have differing ranges in accordance with local labor markets)
TradeStation provides equal employment opportunities to current and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, sexual orientation, age, pregnancy, disability, handicap, citizenship, veteran or marital status, or any other legally recognized status entitled to protection under federal, state, or local anti-discrimination laws.
#LI-Remote