The TP ICAP Group is a world leading provider of market infrastructure.

Our purpose is to provide clients with access to global financial and commodities markets, improving price discovery, liquidity, and distribution of data, through responsible and innovative solutions.

Through our people and technology, we connect clients to superior liquidity and data solutions.

The Group is home to a stable of premium brands. Collectively, TP ICAP is the largest interdealer broker in the world by revenue, the number one Energy & Commodities broker in the world, the world’s leading provider of OTC data, and an award winning all-to-all trading platform.

The Group operates from more than 60 offices in 27 countries.  We are 5,300 people strong.  We work as one to achieve our vision of being the world’s most trusted, innovative, liquidity and data solutions specialist.

Role Overview

This role sits within the Global IT Security department and operates as a global team responsible for cyber security at TP ICAP.

The Senior Cyber Security Engineer has the remit of proactively driving development of the cyber security capability in line with the evolving threat landscape. This includes; vulnerability management, access control, security platform engineering, detection and response activities. Coordinate with offensive security personnel to improve security posture based on Red/Purple team campaign findings.

The role requires a self-starter, capable of taking the initiative either as part of a group or working independently. An ability to problem solve through solutions engineering to deliver defined objectives is essential. This requires ingenuity and resourcefulness to achieve cyber security orientated goals, that also facilitate our business needs. Personal career development is strongly supported, especially where directly applicable to ongoing workstreams.

Overall, the Senior Cyber Security Engineer is required to have a willingness to learn and adapt, in order to accomplish outcomes that improve the overall cyber security posture of the group. Fundamental to this is the ability to exercise an offensive security mindset.

Role Responsibilities

Maintain knowledge of current ATP TTPs

Maintain knowledge of security tool landscape

Vulnerability identification and remediation

Penetration test report remediation

Privileged access management

Red/Purple offensive security activities

Incident response and forensics

Proactively identify opportunities for control improvements

Develop strong relationships with stakeholders across the business

Provide security tooling metrics

Review and provide security input on architecture design briefs and technical solution documents

Collaborate with solution architects to ensure security is embedded in system and cloud designs

Define and validate security controls across cloud environments, particularly AWS

Maintain awareness of cloud security architecture best practices and emerging technologies

Support the development and implementation of secure-by-design principles across projects

Security platform engineering and projects 

Experience / Competences

Essential

Experience implementing vulnerability management, SIEM, PAM, IDS/IPS, EDR, DLP, CNAPP and AV platforms

Intermediate level knowledge of incident response processes for OS and network level events

Comfortable with Windows and Linux operating systems

Solid knowledge of networking, active directory and web applications

Comfortable with at least one scripting or programming language such as Python, PowerShell, Bash, or Go

Experience with reviewing and implementing Cloud security controls

Experience reviewing architecture design documents and identifying security risks

Strong understanding of AWS security services and controls (e.g., IAM, Guard Duty, SCPs, KMS)

Familiarity with cloud-native security frameworks and reference architectures

Desired

Incident response and forensics

Offensive security experience

Degree level accreditation or equivalent experience

OSCP, CEH or SANS certification

Experience with threat modelling and secure design principles

Band & level: Manager, 6

#LI-Hybrid #LI-MID

Not The Perfect Fit?

Concerned that you may not meet the criteria precisely? At TP ICAP, we wholeheartedly believe in fostering inclusivity and cultivating a work environment where everyone can flourish, regardless of your personal or professional background. If you are enthusiastic about this role but find that your experience doesn't align perfectly with every aspect of the job description, we strongly encourage you to apply. You may be the ideal candidate for this position or another opportunity within our organisation. Our dedicated Talent Acquisition team is here to assist you in recognising how your unique skills and abilities can be a valuable contribution. Don't hesitate to take the leap and explore the possibilities. Your potential is what truly matters to us.

Company Statement

We know that the best innovation happens when diverse people with different perspectives and skills work together in an inclusive atmosphere. That's why we're building a culture where everyone plays a part in making people feel welcome, ready and willing to contribute. TP ICAP Accord - our Employee Network - is a central to this. As well as representing specific groups, TP ICAP Accord helps increase awareness, collaboration, shares best practice, and holds our firm to account for driving continuous cultural improvement. 

Location