Job description

[Up to c. $200k Comp Package | Hybrid Working - 4 Days in Office] Role Overview We’re representing a global financial technology firm renowned for delivering broker-neutral trading platforms across multiple asset classes, including equities, FX, options, futures, and fixed income. With more than 25 years of innovation and a client base spanning both the buy- and sell-side, the business continues to invest heavily in its technology, infrastructure, and security capabilities. The firm is now seeking an accomplished Security Engineering Lead to take ownership of its security engineering function, leading a small but technically strong team responsible for designing, building, and maintaining critical security systems across both on-premise and cloud environments. This is a hands-on leadership position where you’ll balance strategic oversight with deep technical engagement. You’ll work directly with infrastructure, software, and operations teams to embed security into every stage of the engineering lifecycle... Key Responsibilities • Lead a technically skilled team of security engineers, encouraging collaboration, knowledge sharing, and continual technical development • Shape and evolve the firm’s security architecture across hybrid cloud and on-premise environments, ensuring scalability, compliance, and resilience • Partner with engineering, operations, and infrastructure teams to embed security at every stage of development and deployment • Design and automate repeatable processes using Python or similar scripting languages to streamline day-to-day security operations • Establish and refine operational playbooks, governance frameworks, and incident-handling standards that strengthen organisational security posture • Oversee systems related to identity, access management, and endpoint defence while maintaining robust network segmentation and server hardening practices • Review existing controls and detection mechanisms, identifying ways to enhance performance, coverage, and efficiency • Take ownership of incident response and investigation efforts, ensuring root causes are identified and long-term mitigations implemented • Advocate for secure design principles throughout engineering workflows, maintaining a focus on prevention and continuous improvement • Produce concise reporting and metrics that inform leadership of risk levels, vulnerabilities, and progress against security objectives • Participate in planned maintenance windows and upgrade activities, including occasional weekend work as required What You’ll Bring... • 5-8 years' background in security engineering, with solid experience spanning both traditional data centre and cloud-based environments • At least two years of team leadership, demonstrating the ability to coach engineers and coordinate delivery in complex, high-stakes settings • Strong technical fluency with Linux operating systems, including configuration, hardening, and system optimisation • Proven understanding of cloud security fundamentals within hybrid infrastructures, ideally with hands-on AWS or Azure exposure • Thorough grasp of networking concepts such as routing, VPNs, DNS, and firewall configuration within secure environments • Experience managing identity and privileged access frameworks to enforce consistent, principle-based access control • Proficiency in at least one scripting language - ideally Python - to automate monitoring, deployment, or remediation workflows • Effective communicator able to prioritise, delegate, and bridge discussions between engineering teams and business stakeholders • Working familiarity with DevSecOps practices and the integration of automated security checks into CI/CD pipelines • (Preferred) Degree in Computer Science, Cybersecurity, or another technical discipline • (Preferred) Recognised industry certifications such as CISSP, CISM, or CEH ...

Requirements