Infrastructure Security Engineer (IAM & Automation)

United States, Illinois, Chicago
Permanent
Job ID: 2324

Job Description


[Up to c. $325k Comp Package | Hybrid Working - 4 Days in Office]


Role Overview

We’re working with a global trading firm seeking an Infrastructure Security Engineer to help embed security into the very foundations of its platform. You’ll play a hands-on role in securing core services that underpin trading systems worldwide - spanning Linux, Kubernetes, CI/CD, storage, and shared compute. This is a role for an engineer who thrives on automation and enjoys solving complex infrastructure problems through a security lens. You’ll design and implement secure authentication and access patterns, build automation around secrets management, and strengthen the firm’s ability to operate securely at scale across both cloud and on-prem environments...


Key Responsibilities

  • Design and enhance identity, authentication, and access management across core infrastructure services and applications
  • Implement and improve secrets management solutions (e.g. Vault or equivalent), automating lifecycle management and integration into engineering workflows
  • Build automation and infrastructure-as-code/policy-as-code frameworks
  • Contribute to the secure design of CI/CD pipelines, ensuring security is embedded into build and deployment processes
  • Develop secure certificate and PKI workflows for service-to-service and user authentication
  • Collaborate with platform, cloud, and security engineers to deliver secure-by-default configurations and operational benchmarks
  • Support threat modelling, design reviews, and RFC processes to validate and improve security measures
  • Create technical documentation and onboarding material to enable safe and efficient adoption of new controls


What You’ll Bring...

  • 3+ years’ experience in infrastructure security, DevSecOps, or SRE roles with a security focus
  • Strong scripting and automation skills (Python preferred; Golang or Java beneficial)
  • Hands-on experience with identity and access management solutions, authentication protocols (OIDC, Kerberos, LDAP), and access governance concepts
  • Practical knowledge of secrets management platforms (HashiCorp Vault preferred) and integration into large-scale infrastructure environments
  • Familiarity with PKI, TLS certificate management, and secure workflow integrations
  • Experience with cloud and on-prem infrastructure, including containerised environments (Docker, Kubernetes)
  • Understanding of Linux access controls, permissions, and secure system design patterns
  • A proactive, detail-oriented mindset - focused on scalable, pragmatic solutions over theoretical compliance


...

Apply for this role

All fields marked with * are required.

I confirm I have a pre-existing Right to Work in this location *

Back to Job Listings