ION

Company Name: ION
Job Title: Senior Security Architect
Job Description: About Us

We’re visionary innovators who provide trading and workflow automation solutions, high-value analytics, and strategic consulting to corporations, financial institutions, central banks, and governments. More than 40% of the world’s largest companies use our solutions. We’ve achieved tremendous growth by bringing together some of the best and most successful financial technology companies in the world.

At ION, we offer careers that provide many opportunities: To invent. To design. To collaborate. To build. To transform businesses and empower people around the world to do more, faster and better than before. Imagine what you can do and experience. This is where you can do your best work.

Learn more at iongroup.com.

Your role

Your duties and responsibilities

Establish policies and procedures that promote secure development/cloud principles.
Enable security automation through tools to reduce vulnerabilities and flaws due to human errors.
Automate audit evidence collection throughout the SDLC to facilitate compliance reporting.
Monitor security metrics to continuously improve and stay one step ahead of the red team.
Maintain strong and continuous engagement with teams to ensure the ION Cloud architecture and operating model is up to the top security standards.
Create a state-of-the-art secure cloud architecture and strategy, supported by a robust and flexible infrastructure with reliable and efficient operating model.
Run post-mortem incidents analysis.
Review the security principles compliancy of deployment, maintenance, monitoring, and management processes.
Cooperate with the software architect to ensure that security aspects are considered in the software architecture.
Regularly evaluate the best cloud applications, hardware, and practices available in the security domain.
Provide training and guidance to the rest of the organization, helping with the development of a security culture throughout the company.
Help the product owner in refining security requirements so that they fit in the customer’s strategy and becomes selling point.

Other duties

We might ask you to perform other tasks and duties as your role expands.

Skills

Your skills, experience, and qualifications

Threat Modeling.
Authentication/authorization standards and implementations
Application of encryption at rest and in transit
Certificates/secrets standards and implementations
Managing security in public clouds ( AWS, Azure, GCP), with at least 3 years specific experience in either AWS or Azure.
Secure microservices architectures in a cloud-native environment.
Strong understanding of networking.
Knowledge of different deployment models (Container, Serverless, Cloud, PaaS, IaaS …).
Ability to work with diverse, remote, and distributed teams across multiple regions and time zones.
Ability to do research autonomously to always be ahead of any security threat.
SSDLC practices in DevOps, CI/CD environment.
OWASP Top 10, SANS CWE, OpenSAMM, BSIMM, etc.
Penetration testing, vulnerability scanning
Design security monitoring tools.
Designing pipelines that make use of SCA, SAST, DAST, IAST and RASP solutions.

Qualifications

SANS/SEC-540: Cloud Security and DevSecOps Automation
Systems Security Certified Practitioner (SSCP)
Certified Information Systems Security Professional (CISSP)
Certified Authorization Professional (CAP)
Certified Secure Software Lifecycle Professional (CSSLP)
HealthCare Information Security and Privacy Practitioner (HCISPP)

Experience

Multi-year experience in Threat Modeling.
A proven track record as architect and consultant, capable of working directly with teams, embedded in the delivery model.
Experience with Kubernetes, Openshift, Service Mesh.
Experience with clouds (AWS, Azure, GCP)
Experience with getting or maintaining certified standards (i.e. ISO 27001, PCI DSS, MIL-SPEC)

Contract Type

Full-time, permanent contract.

Important notes (Italy)

According to the Italian Law (L.68/99) Please note that candidates from the disability list will be given priority.

Due to the high volume of applications, only those candidates that meet the required criteria for selection will be contacted.

If you’re from a non-EU country, you must have a valid EU visa or work permit.

London, United Kingdom

On site

05-03-2025

Company Name: ION
Job Title: Markets Product Security Engineer - UK
Job Description: The Role

This is an amazing opportunity to work with Information Security and Compliance Team at ION. As a Product Security Engineer, you would be the key enabler of secure and compliant products. You should have knowledge of attack paths across the technology stack, including tactics, techniques and procedures (TTPs) used by adversaries to exploit vulnerabilities. You will be trusted advisor throughout the product development lifecycle, incorporating knowledge of emerging threats, business goals and system design to improve platform security posture. You will be responsible for aligning the Markets security strategy, security design and controls engineering to product roadmap. You will also be responsible for providing transparency to leadership on product control performance and associated risk.

Key Responsibilities

Within the Product Security Team as part of the ION Markets CISO function, you will deal with the following activities:
Monitor and identify security events and emerging threats associated with the product line you are managing and any dependencies;
Act as the interface between CSIRT and Product teams as part of security incident activities;
Deliver threat modelling and hunting to identify vulnerabilities in product design and provide control recommendations to mitigate those risks;
Engage in architecture and design reviews to ensure product alignment with Security strategy and industry best practices;
Stay up to date with industry trends, best practices and regulatory standards that may impact product implementations;
Support the engineering of control solutions where existing offerings are not available;
Provide security expertise during incident and problem management.
Produce threat intelligence briefings and other work products to share information across the organisation
Respond to ad-hoc requests for platform security related guidance
This role may require some overnight, weekend and on-call activities.

Required Skills, Qualifications And Experience

Knowledge of:
Working within the financial services industry, or other highly regulated industries in a technical role.
Information security management, governance, and compliance principles, practices, laws, rules and regulations, e.g. NIST, ISO, NIS, DORA and GDPR;
Information technology systems and processes, network infrastructure, data architecture, data processes and protocols;
Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration, e.g. CIS, CSF;
Skills in:
Security Tooling: Proficiency in common security tools, such as SIEMs, vulnerability scanners, firewalls and EDR products;
Scripting: Proficiency in scripting languages like Python, BASH, or PowerShell;
Security Incident Management: Ability to assist with the detection, response, and recovery of escalated security incidents and manage backlog/lessons learned actions;
Risk Assessment: Proficiency in conducting security risk assessments and providing thorough post-event analyses;
Security Expertise: Providing security expertise during incident and problem management;
Communication: Strong communication skills to explain complex security issues to both technical and non-technical audiences.
Ability to:
Effectively communicate technical issues to diverse audiences, both in writing and verbally;
Handle sensitive and confidential matters, situations, and data;
Understand and follow broad and complex instructions;
Comprehend technical language and to confer, analyse and write in an objective, lucid manner;
Work independently and prioritize multiple tasks and adapt to needed changes;
Remain calm under high pressure/difficult situations.

Preferred Certifications

GCIH;
CSEC;
CSSLP;
CISSP.
CASP+

About Us

We’re a diverse group of visionary innovators who provide trading and workflow automation software, high-value analytics, and strategic consulting to corporations, central banks, financial institutions, and governments. Founded in 1999, we’ve achieved tremendous growth by bringing together some of the best and most successful financial technology companies in the world.

Over 2,000 of the world’s leading corporations, including 50% of the Fortune 500 and 30% of the world’s central banks, trust ION solutions to manage their cash, in-house banking, commodity supply chain, trading and risk.
Over 800 of the world’s leading banks and broker-dealers use our electronic trading platforms to operate the world’s financial market infrastructure.

ION is a rapidly expanding and dynamic group with 13,000 employees and offices in more than 40 cities around the globe. Our ever-expanding global footprint, cutting edge products, and over 40,000 customers worldwide provide an unparalleled career experience for those who share our vision.

ION is committed to maintaining a supportive and inclusive environment for people with diverse backgrounds and experiences. We respect the varied identities, abilities, cultures, and traditions of the individuals who comprise our organization and recognize the value that different backgrounds and points of view bring to our business.

ION adheres to an equal employment opportunity policy that prohibits discriminatory practices or harassment against applicants or employees based on any legally impermissible factor.

London, United Kingdom

On site

04-03-2025

Company Name: ION
Job Title: Site Reliability Engineer
Job Description: About Us

The ION Group is made up of innovators who provide trading and workflow automation solutions, high-value analytics, and strategic consulting to corporations, financial institutions, central banks, and governments.

More than 40% of the world’s largest companies use our solutions. We’ve achieved tremendous growth by bringing together some of the best and most successful financial technology companies in the world.

At ION, we offer careers that provide many opportunities: To invent. To design. To collaborate. To build. To transform businesses and empower people around the world to do more, faster and better than before. Imagine what you can do and experience. This is where you can do your best work.

Learn more ationgroup.com.

We are looking for experienced people who are competent in the cloud and knowledgeable about the SRE (site reliability engineering) domain.

The team

The Core Architecture Team (CAT) produces and manage the core technology, methodologies and frameworks that underpins all new or re-engineered ION products.

We provide our internal and external customers foundations and an open platform they can extend and evolve to manage their solutions independently and with reduced cost of ownership.

The ION Cloud Center of Excellence is aimed to support the Groups strategy toward “a Cloud native offering" via a cross–functional team of empowered people that are responsible for developing and managing the strategy, governance, and best practices for the entire Group

Some Of The Team Deliverables

Create the ION Cloud Infrastructure reusable by all the ION Divisions
Reduce the total cost of ownership
Provide guidelines and best practices for the entire organization
Reduce operation complexity via automated platform configuration and deployment
Provide tools that ease the developers to setup the CI environment for ION Products
Governance on the development tools, to increase operational efficiency
Technology recommendations standardization and infrastructure and product design, across the Group

Who You Are

Your background is either in software development or operations/infrastructure (or both!), and you enjoy to code or automate your workflows.

You have proven experience in working with cloud providers and dealing with cloud-first applications engineered with a cloud-native mindset.

You are a self-starter individual and constantly learning engineer and enjoy working in a team of peers.

You are open and candid about discussing solutions, problems and improvements within your team and others in the engineering organization.

You have a passion for site reliability engineering (SRE) principles and adoption, and you are keen to start conversations with teams about reliability, performance and security of the applications, services and systems.

You are an advocate of DevOps or SRE approach, promoting loosely coupled, heavily automated, constantly monitored distributed systems, and you always plan for failure and never take anything for granted.

You are keen to raise the bar of the solutions provided by the whole engineering team (dev and ops).

You possess strong written and verbal communication skills

You are happy to be involved into an on-call rotation whether needed.

What You'll Be Doing

It’s fine to have some of these, the more the merrier!

The Cloud Engineer side

Maintain our internal tooling and automation, to improve the reliability, scalability and the observability of our services.
Proactively identify and solve issues across the whole stack, together with the rest of the infrastructure and engineering teams.
Contribute to raise awareness in the security and protection of the cloud, understanding how to fit these in timelines and backlog of the end team.
Understand how a distributed application works, constraints, and limitations.
Have strong coding and scripting experience and you are interested in improving your programming / coding knowledge (python or go ideally).

The Site Reliability Engineer side

Promote and execute the adoption of SRE principles and raise awareness on the importance of reliability and automation.
Help the team understand concepts like ownership, error budgets and production readiness.
Help define and implement SLIs, SLOs and check SLAs, to meet customer satisfaction.
Work together with teams to identify and solve issues in platforms and tune services for reliability and performance.
Aim to reduce toil and manual efforts with automation and repeatable and documented tooling and standard procedures.
Take active part in the incident management process to troubleshoot impacting issues in a timely manner and engage with all stakeholders involved.

Your Skills, Experience, And Qualifications

These are must-haves!

Our work language is English, hence it’s very important to be proficient with it.
Extensive knowledge and experience in one of the major clouds, including AWS, Azure, GCP; with a comprehensive understanding and real-world implementation experience (We currently use AWS and Azure).
Microservices in a cloud-native world: architecture, deployments and engineering in the Kubernetes and Container space. You are familiar with how to protect services and adhere with industry standards / best practices.
Understanding of network topologies, deployment methods and constraints in the cloud.
Familiarity with application development methodologies in a cloud-native environment and container-based runtime.
Understanding of distributed systems is essential. You would benefit from having architectural concepts like SOA, object-oriented analysis and design, and/or client/server systems.
Experience working with diverse, remote, and distributed teams across multiple regions and time zones.
A proven track record as site reliability or production engineer, and working in a consulting capacity directly with teams, to educate and provide the best solution achievable within the project constraints
Cyber Security and operations awareness: understanding the basic principles (identity and access management, least privilege, encryption, etc) and strive towards implementing best practices and education, to establish a robust set of defences in line with the company requirements.

Contract and locations

Contract Type: Full-time, permanent contract.
Locations: London, Milan, Pisa, Parma

Enjoy a hybrid work culture that offers the best of remote flexibility and in-person collaboration.

Important Notes (Italy)

According to the Italian Law (L.68/99) Please note that candidates from the disability list will be given priority.

Due to the high volume of applications, only those candidates that meet the required criteria for selection will be contacted.

If you’re from a non-EU country, you must have a valid EU visa or work permit.

Any-Martin-Rieux, France

On site

06-03-2025

Company Name: ION
Job Title: Senior Full Stack Software Developer, Italy
Job Description: We are looking for ambitious and self-driven candidates for the position of a Full Stack Software Engineer to expand our development multi-site team in Pisa. Our team is developing financial innovation products that affect the ability of our clients to generate revenue and remain the dominant player in the fintech market. In your day to day, you will be expertise to all aspects of the software development lifecycle, as well as partner continuously with the software product management. You'll work in a full-stack functional team, collaborative, trusting, thought-provoking environment that promote research for new technologies and challenges.

Who We Are

We’re visionary innovators who provide trading and workflow automation solutions, high-value analytics, and strategic consulting to corporations, financial institutions, central banks, and governments. More than 40% of the world’s largest companies use our solutions. We’ve achieved tremendous growth by bringing together some of the best and most successful financial technology companies in the world.

At ION, we offer careers that provide many opportunities: To invent. To design. To collaborate. To build. To transform businesses and empower people around the world to do more, faster, and better than before. Imagine what you can do and experience. This is where you can do your best work.

Learn more at iongroup.com.

Role And Responsibilities

Designing, coding, and debugging software.
Improving the performance of existing software.
Providing training to other engineers.
Maintaining and upgrading existing software.
Recommending new technologies that can help increase productivity.
Supervising and overseeing the technical aspects of projects.
Investigating software-related complaints and making necessary adjustments to ensure optimal software performance.
Regularly attending team meetings to discuss projects, brainstorm ideas, and put forward solutions to any issues.

Your Skills And Experience

You are familiar with one or more of the following programming paradigms: Object-oriented programming, Concurrent programming, Functional programming, Asynchronous programming.
You are familiar with one or more programming languages and related ecosystems among Java, Javascript, Python.
You are familiar with one or more frameworks among Node.js, React, Angular, Spring.
You are familiar with one or more among SQL and NoSQL databases.
You are familiar with ATDD and TDD tools and practices.
You are familiar with CI tools and best practices.
You are familiar with Git, Maven, Jenkins, and any IDE required to be effective in your daily job (Eclipse, Visual Studio Code, ...).
You are used at dealing with complexity.
You are comfortable at understanding functional requirements and you are able to contribute to the implementation of the identified solutions aimed at resolving non-functional needs.
You have been successfully working as a Full Stack Developer for 3+ years.
You understand complexities and value in working in multi-functional, self-organized teams.
You are rigorous and professional in the way you approach your daily job.
You value the team and individuals; you are comfortable to relate to people of any seniority and role within the company.

Your academic background

Preferred: BSc, MSc, PhD in Computer Engineering / Science acquired in top subject specific ranked universities in Engineering and Technology.

Contract Type

Full-time, permanent contract.

Important Notes

According to the Italian Law (L.68/99) please note that candidates from the disability list will be given priority.

Due to the high volume of applications, only those candidates that meet the required criteria for selection will be contacted.

We will only consider direct applications. CVs received via recruitment agencies will not be accepted.

Any-Martin-Rieux, France

On site

07-03-2025

About the Company

Listed Jobs