Advancing global markets
starts with great people.


Join the largest (and only) exchange operator in the Fortune 500.


"Our people, who are our greatest
asset, make what we do possible."
- Jeffrey Sprecher, CEO


Help transform markets anywhere around the globe.


Analyst/Engineer - Cybersecurity DFIR

R-03297 Requisition #
Job Purpose

The ICE Cybersecurity Digital Forensics and Incident Response (DFIR) team is responsible for global Cybersecurity incident response and investigation in a highly-regulated critical financial infrastructure environment.


Team Core Duties

  • Incident Management – Ensures Information Security incidents are properly detected, documented, investigated, and resolved
  • Control Refinement - Identifies opportunities to refine controls to reduce false positive alerts and prevent true-positive events
  • Awareness and Engagement - Builds trust and strong rapport among the Cybersecurity team and global employees so staff are quick to report incidents, demonstrate security awareness, and collaborate on defensive actions
  • Escalation and Coverage -  Ensures experienced team members are applied effectively while all team members have opportunities to learn and grow
  • Endpoint and Network Forensics - Identifies efficient investigation techniques and artifacts that are appropriate for the level of evidentiary rigor required
  • Exercise and Measurement - Appreciates the importance of table-top, live-fire, and red team exercises and fosters a sense of urgency in responding to rehearsals and actual incidents alike.  Embraces and contributes to the design and collection of meaningful metrics including mean-time-to-detection and containment


Seniority is determined by experience and demonstration of exceptional competencies including:

  • Documenting and effectively publishing technology guidance and repeatable processes
  • Mentoring peers in groups and individually
  • Improving processes and introducing superior technology
  • Taking initiative to learn business goals, liaise with other departments, and identify ways to increase productivity in other ICE groups and offices
  • Serving as a responsible Subject Matter Expert (SME) on one or more tools or technologies via learning, testing, implementing, enhancing, and educating
Knowledge and Experience
  • University degree in Engineering, MIS, CIS, or related discipline
  • Hands-on experience with Systems Administration and/or IP Networking
  • Experience supporting an advanced software development organization
  • Experience in an exchange, trading facility, or financial services

Specific Technologies:  Operating system-agnostic memory allocation and process execution fundamentals.  OSI model, network interaction, packet analysis and implications of encryption.  SMTP communication and detailed header analysis.  DNS behavior from client and server perspectives.  Sandboxing, virtual machine execution, and methods of evading and hiding virtual architecture.  Social engineering and reconnaissance techniques and identification methods.

Previous Job Searches

My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions
Please try again.


Either there was a problem on our end with the action you just performed, or we are currently having technical difficulties with our system. Please try again later.

Follow Us:
  • Facebook
  • Instagram
  • Twitter
  • Snapchat
  • LinkedIn