Security Operations Generalist

Company Description

Tradeweb is a global leader in electronic trading for rates, credit, equities, and money markets. As financial markets become increasingly interconnected, our technology enables efficient, multi-asset trading on a global scale. We serve more than 3,000 clients in more than 85 countries, including many of the world's largest banks, asset managers, hedge funds, insurers, corporations, and wealth managers.

Creative collaboration and sharp client focus have helped fuel our organic growth. We facilitated average daily trading volume (ADV) of more than $2.2 trillion over the past four fiscal quarters, topping $2.5 trillion in ADV for the first quarter of 2025.

Since our IPO in 2019, Tradeweb has completed four acquisitions and doubled our revenues - and 2024 was our 25th consecutive year of record revenues.

Tradeweb is a great place to work, recognized in 2024 by Forbes as one of America's Best Companies (2024) and by U.S. News & World Report as one of the Best Financial Services Companies to Work For .

Tradeweb Markets LLC ("Tradeweb") is proud to be an EEO Minorities/Females/Protected Veterans/Disabled/Affirmative Action Employer.

Mission: Move first and never stop. Collaborate with clients to create and build solutions that drive efficiency, connectivity, and transparency in electronic trading.

https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf

Job Summary:
We are seeking a Security Operations Generalist to join our Security Operations team. In this role, you will be responsible for monitoring, detecting, and responding to security threats while supporting our overall security posture. You'll work across multiple security domains and collaborate with various teams to protect our organization's assets and data.

• Security Monitoring & Alert Triage: Monitor SIEM alerts, analyze security events, and determine appropriate response actions across all shifts
• Incident Response: Investigate security incidents, document findings, and coordinate response efforts with stakeholders; serve as escalation point during assigned shifts
• Threat Detection: Perform proactive threat hunting activities using various security tools and threat intelligence
• Security Tool Management: Assist in administration and tuning of security tools (SIEM, EDR, IDS/IPS, firewall)
• Vulnerability Management: Support vulnerability scanning initiatives and coordinate remediation efforts with IT teams
• Security Analytics: Create and maintain security dashboards, metrics, and reports for leadership
• Process Improvement: Identify gaps in security processes and contribute to playbook development
• Documentation: Maintain detailed documentation of security incidents, procedures, and configurations
• Collaboration: Work with Cyber Engineering, DevOps, and other teams to implement security best practices
• Shift Handoffs: Provide thorough shift briefings and ensure seamless continuity of operations

• Experience: 4+ years in security operations, SOC analysis, or related cybersecurity role
• Schedule Flexibility: Willingness and ability to work rotating shifts including nights, weekends, and holidays
• Technical Skills:
• Strong understanding of security concepts (CIA triad, defense-in-depth, kill chain)
• Experience with SIEM platforms (Splunk, Sentinel, Elastic, or similar)
• Knowledge of network protocols (TCP/IP, DNS, HTTP/HTTPS)
• Familiarity with endpoint security tools (EDR, antivirus)
• Understanding of common attack vectors and TTPs (MITRE ATT&CK framework)
• Experience with log analysis and correlation
• Basic scripting skills (Python, PowerShell, or Bash)
• Analytical Skills: Strong problem-solving abilities and attention to detail
• Communication: Excellent written and verbal communication skills for technical and non-technical audiences; ability to communicate effectively during high-pressure incidents
• Certifications: CISSP, Security+, or equivalent (preferred)

• Knowledge of threat intelligence platforms and frameworks
• Familiarity with security orchestration and automation (SOAR)
• Experience with digital forensics or malware analysis
• Experience with cloud security (AWS, Azure, GCP)
• Additional certifications (GCIH, GCIA, CEH, or similar)
• Experience with ticketing systems (ServiceNow, JIRA)
• Understanding of compliance frameworks (NIST, ISO 27001, PCI-DSS)
• Prior experience working in a 24/7 SOC environment