Connecting clients to markets – and talent to opportunity

With 4,300 employees and over 400,000 retail and institutional clients from more than 80 offices spread across five continents, we’re a Fortune-100, Nasdaq-listed provider, connecting clients to the global markets – focusing on innovation, human connection, and providing world-class products and services to all types of investors.

Whether you want to forge a career connecting our retail clients to potential trading opportunities, or ingrain yourself in the world of institutional investing, The StoneX Group is made up of four segments that offer endless potential for progression and growth.

Corporate: Engage in a deep variety of business-critical activities that keep our company running efficiently. From strategic marketing and financial management to human resources and operational oversight, you’ll have the opportunity to optimize processes and implement game-changing policies.

A Threat Detection and Automation Engineer is responsible for collaborating with cross-functional teams to develop and implement robust threat detections, security automations, and alerting policies. A Threat Detection and Automation Engineer is on the team that implements these solutions in accordance with the organization’s architectural designs, best practices, and regulatory or compliance requirements. As risks change, a Threat Detection and Automation Engineer implements, modifies, and makes enhancements to ensure the organization is evolving with the threat landscape.

• Engineer, Implement, and Support security tooling such as: 

• SIEM 
• SOAR 
• Alert and Threat Detections 

• Build security detections and detection frameworks. 
• Perform reviews to identify detection gaps in the environment. 
• Engage with relevant owners of high-risk systems and services to identify and prioritize detection gaps. 
• Assist with incident response and help triage major security events and incidents with Security Operations personnel when required. 

• Understanding of a wide range of security tools and concepts. This includes Endpoint Detection and Response (EDR), secure email gateways, vulnerability management, threat intelligence, web security gateways, Cloud App Security Brokers (CASB), and Data Loss Prevention (DLP).  
• Understanding of additional technical concepts such as identity, networking, endpoints (Windows, MacOS, iOS, Android), servers (Linux and Windows), and scripting languages (Python and PowerShell). 
• Knowledge of security industry standards (NIST, PCI, ISO), best practices (ITIL), regulations (SOX, FINRA), news, and other relevant cybersecurity information. 
• Individual must be able to perform with minimal supervision of routine duties; must demonstrate ability to solve practical problems and deal with a variety of situations where only limited standardization exists. 
• Communicate technical issues and concepts both verbally and in writing to audiences of varying technical backgrounds.  
• Ability to help gather business requirements and align them to security solutions. 
• Expert organizational skills are a must as well as the ability to work successfully within a team.  
• 1-3+ years of overall technology experience. Prefer a diverse background including security, networking, compute, storage, and endpoint. 
• 1-3+ years of experience as a security analyst or engineer. 

Education / Certification requirements: in at least one of or working towards the following: 

• Associate Degree or Bachelor’s degree in information security, Information Assurance, Information Systems, or equivalent experience. 
• Certified Information Systems Security Professional (CISSP). 
• SANS related certifications (GSEC, GCIA, GCED, GCIH etc.). 
• Other field appropriate certifications may be considered. 

Physical requirements/Working conditions: 

• Climate controlled office environment. 
• Minimal physical requirements other than occasional light lifting of boxed materials. 
• Dynamic, time-sensitive environment.