Information Security Analyst

Information Security Analyst

About IEX

IEX (IEX Group, Inc.) is an exchange operator and technology company dedicated to innovating for performance in capital markets. Founded in 2012, IEX launched a new kind of securities exchange in 2016 that combines a transparent business model and unique architecture designed to protect investors. Today, IEX applies its proprietary technology and experience to drive performance across asset classes, serve investors, and advocate for transparent and competitive markets.

Role Overview:

IEX is looking for an experienced Information Security Analyst to join our Information Security Team. You will perform security compliance and oversight of our environment and utilize security tools and processes to review, detect, investigate and/or escalate events that require further examination. You should have a solid understanding of information security, networking concepts, and strong analytical skills. You should be a strong team player who works with others to drive continuous improvement for yourself, the team and the program.

About You:

• Self-starter who is proactive and entrepreneurial
• Organized, detail-oriented, and process-oriented
• Cross-functional team player, resourceful, and responsive
• Excellent analytical, critical thinking, communication, and problem-solving skills

What You’ll Do:

• Identify security threats by monitoring and correlating events originating from security tooling and event logs
• Apply and maintain standardized procedures to investigate and resolve potential security incidents
• Tune security tooling as required to optimize and enhance the information available for analyzing potential security events
• Identify and track security metrics related to environment and industry trends to create a normalized view of expected network behavior and to detect anomalies
• Assist in running the IEX vulnerability management program as well as identify vulnerabilities that may exist in the environment through available sources and assessments
• Identify and lead projects that further advance IEX’s ability to detect, contain, and eradicate threats
• Review threat intelligence sources for items that are relevant to IEX and investigate those that are applicable
• Perform security and risk assessments of third-party tools, vendors, and systems
• Work within the information security analyst team to perform and optimize operations and compliance oversight processes to confirm adherence to policy requirements

Your Background:

• 3-5 years of experience in an Information Security Analyst role, or equivalent
• B.S./B.A. in Information Technology, Information Security, Computer Science, or a related field
• Strong passion for and background in cybersecurity/information security, or related field experience
• Deep understanding of threats, vulnerabilities, attack methodologies, and countermeasures
• Strong experience with reviewing event logs, syslog, and using SIEM technologies
• Familiarity with NIST standards and the MITRE ATT&CK Framework
• Experience with security tooling, applications, platforms
• SOAR
• Threat Intelligence
• SIEM
• Vulnerability Management Solutions
• AD/Entra ID
• EDR
• CSPM
• Experience with Microsoft Excel

Nice-to-Haves:

• Project management experience
• Technical understanding of networking, operating systems, cloud platforms and related security technologies
• Scripting experience (e.g., Python, Ruby, BASH, Powershell) preferred
• Relevant certifications (e.g., SSCP, GCIH, GCIA, GCFA, CISSP) a strong plus

Our job titles may span more than one career level. The starting annual base pay is between $115,000 and $150,000 for this NY-based position. The actual base pay is dependent upon many factors, such as: training, transferable skills, work experience, business needs and market demands. The annual base pay range is subject to change and may be modified in the future. This role is eligible for bonus and equity.

Here at IEX, we are dedicated to an inclusive workplace and culture. We are an Equal Opportunity Employer that does not discriminate on the basis of actual or perceived race, color, creed, religion, alienage or national origin, ancestry, citizenship status, age, disability or handicap, sex, marital status, veteran status, sexual orientation, genetic information or any other characteristic protected by applicable federal, state or local laws. This policy not only complies with all applicable laws and protects workers' rights but is vital to IEX’s overall mission and values.