Company Description
MarketAxess is on a journey to digitally transform one of the world’s largest financial markets, enabling the shift from analog, phone-based trading to a fully electronic marketplace. Why does this matter? Because our platform makes trading fixed-income more accessible, ultimately improving transparency, efficiency, and competition in the marketplace. Changing the way an established industry transacts is no easy feat. There will be twists and turns, because no one’s ever done this before. But now, more than 2,000 clients around the world rely on our solutions, and that number is only expected to grow in the years ahead. We know where we’re going. How we get there is up to us. Join us and help Take Us There.
The Role
We are seeking a highly skilled and motivated Head of Application Security to lead and manage our Application Security Organization. Reporting to the Chief Information Security Officer, the role is responsible for overseeing the Security posture for both our software products and technology services that are delivered within the MarketAxess organization and to our business customers. The role is pivotal in ensuring the availability, performance, and security of the products/solutions we produce internally here at MarketAxess as well as through partners. The individual will work closely with product development, engineering, compliance, and legal teams to create secure-by-design solutions, protect intellectual property, and safeguard against cyber threats.
How You'll Help Take Us There
- Develop and execute a comprehensive product security strategy aligned with business goals.
- Lead and manage a team of product security professionals, providing mentorship, guidance, and support in their day-to-day activities.
- Engage and collaborate with leaders and teams across infrastructure, engineering, operations, product development and legal to integrate trust and security principles throughout the product lifecycle.
- Drive a security-first mindset across the product and development organization.
- Develop, design, and implement secure cloud architectures that align with MarketAxess’ security and business objectives.
- Conduct thorough security assessments, threat modeling and risk analysis for new and existing products and operational technologies, identifying product vulnerabilities specific to software and hardware.
- Deliver and improve Product Security KPIs, which reflects the Security, Privacy, Availability and Recoverability posture across MarketAxess products and services.
- Work closely with product managers, engineers, and architects to embed security into the product lifecycle.
- Champion secure coding practices, vulnerability management, and secure design principles.
- Oversee security reviews, code analysis, and penetration testing.
- Manage and mentor a team of product security professionals.
- Foster a culture of continuous learning, growth, and collaboration.
- Provide guidance on career development and skill enhancement.
- Communicate security risks, findings, and recommendations to executive leadership and relevant stakeholders.
- Collaborate with customer-facing teams to address security concerns and build customer trust.
What We’re Looking for
- Proven work experience as a product or application security engineer.
- 7+ years of experience in cybersecurity with a focus on product security, software security, or embedded systems.
- 5+ years of leadership experience in cybersecurity, including building and managing high-performing teams.
- Hands-on experience with security tools such as SAST, DAST, vulnerability scanners, and security testing frameworks.
- Experience with Agile and DevSecOps practices, integrating security into CI/CD pipelines.
- Deep understanding of the cloud security technologies and common toolsets.
- Strong knowledge of cryptography, authentication, access control, and other key security principles.
- Ability to execute in complex and dynamic environments.
- Strategic thinker with a passion for security and an ability to drive product security initiatives.
- Strong leadership and people management skills.
- Excellent problem-solving skills and the ability to work under pressure in a fast-paced environment.
- Collaborative mindset and ability to influence across departments.
- Proven track record in a fast-paced agile environment.
- Ability to explain complex security topics to non-technical audiences.
What You Can Expect from Us
- Hybrid Environment: Our employees enjoy a mix of working in the office and from home.
- Free Food: We provide free lunch for employees when they are working in the office. Plus, our offices are stocked with snacks.
- Paid Time Off: Competitive PTO package including vacation and personal days, sick leave and charity days.
- Generous Parental Leave: Up to 20 weeks fully paid leave.
- 401(k): Dollar-for-dollar employer match up to $17,500.
- Employee Stock Purchase Plan: Employees can purchase MarketAxess common stock at a discount.
- Wellness Stipend: We provide employees with up to $1K annually towards gym memberships, home office equipment and more.
- Onsite Healthcare: We offer convenient access to world-class care through Mount Sinai at our Hudson Yards location.
- Tuition Assistance and Professional Development: Benefit from live and on-demand learning, role-specific training, employee-led Lunch and Learns and guest speakers.
- Core benefits: Highly competitive medical, dental, and vision programs.
For job positions in NYC, NY, and other locations where required, the estimated salary range for a new hire into this position is $200,000 USD to $275,000 USD. Actual salary may vary depending on job-related factors, which may include knowledge, skills, experience, and location. You may also be eligible for annual cash incentives, equity, and other benefit programs.
MarketAxess Corporation and its affiliates provide equal employment opportunities to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, veteran status, or any other legally protected characteristic in the location in which the candidate is applying.
All of your information will be kept confidential according to EEO guidelines.