Security Operator I

India·Hyderabadmid

EngineeringSecurity

0 views0 saves0 applied

Apply Now

Quick Summary

Key Responsibilities

Security Monitoring & Alert Triage Monitor security alerts generated by SIEM, EDR, email security, network,

Requirements Summary

Basic understanding of cybersecurity principles, networking protocols (TCP/IP), and Operating Systems (Linux/Windows). Tool Familiarity: Experience,

Technical Tools

EngineeringSecurity

Interactive Brokers Group, Inc. (Nasdaq: IBKR) is a global financial services company headquartered in Greenwich, CT, USA, with offices in over 15 countries. We have been at the forefront of financial innovation for over four decades, known for our cutting-edge technology and client commitment.

IBKR affiliates provide global electronic brokerage services around the clock on stocks, options, futures, currencies, bonds, and funds to clients in over 200 countries and territories. We serve individual investors and institutions, including financial advisors, hedge funds and introducing brokers. Our advanced technology, competitive pricing, and global market help our clients to make the most of their investments.

Barron's has recognized Interactive Brokers as the #1 online broker for six consecutive years. Join our dynamic, multi-national team and be a part of a company that simplifies and enhances financial opportunities using state-of-the-art technology.

Position Overview:
Seeking a Security Operator I to join our Security Operations Center (SOC) team, focusing on incident response and threat detection. This role involves working with enterprise SIEM platforms, EDR solutions, and incident management tools to protect IBKR's global trading infrastructure.

Key Responsibilities:

Security Monitoring & Alert Triage

Monitor security alerts generated by SIEM, EDR, email security, network, and cloud security tools
Perform initial triage and validation of alerts to determine severity, scope, and potential impact
Identify false positives and review tuning opportunities.

Incident Response Support

Execute incident response playbooks for common attack scenarios such as phishing, malware, endpoint compromise, and suspicious logins
Assist in containment and remediation actions under guidance from senior SOC or IR team members
Participate in 24×7 SOC operations, including shift rotations and on-call coverage

Investigation & Analysis

Perform log analysis across Windows, Linux, network, and security tool telemetry
Validate Indicators of Compromise (IOCs) using internal tools and threat intelligence sources
Support malware and phishing investigations through file, URL, and domain analysis

Incident Management & Documentation

Create and maintain incident tickets in the incident management platform (e.g., ServiceNow)
Document investigation steps, findings, evidence, and closure rationale clearly and accurately
Follow SOC standards for documentation, escalation, and handover

Collaboration & Learning

Work closely with senior analysts, incident responders.
Continuously develop technical skills through hands-on investigations, training, and mentoring
Stay current with common attack techniques and SOC best practices·

Required Skills and Qualifications

Technical Knowledge: Basic understanding of cybersecurity principles, networking protocols (TCP/IP), and Operating Systems (Linux/Windows).
Tool Familiarity: Experience, training or understanding of Cyber Security Technologies such as SIEM, EDR, Email Security, Firewall, IDS/IPS, OWASP etc.

Analytical Skills: Ability to analyze large datasets to identify patterns.

Soft Skills: Strong communication skills, ability to work in a fast-paced environment, and a proactive mindset.

Education/Certification: Bachelor's degree in IT/Cybersecurity. certifications like CompTIA Security+, Certified Ethical Hacker (CEH) is a plus.

Experience: 2–5 years of hands‑on experience in SOC or cybersecurity roles, with relevant certifications considered as a substitute for part of the experience requirement.

Technical Environment: