Enterprise Security Engineer

Enterprise Security Engineer

Job Description

[Up to c. $325k Comp Package | Hybrid Working - 2 Days in Office]

Role Overview

We’re representing a globally recognised quantitative trading firm that combines advanced research, distributed computing, and next-generation AI systems to drive its trading strategies. The business is now seeking an Enterprise Security Engineer to enhance and protect the platforms powering some of the most demanding environments in finance. This is a hands-on engineering role focused on securing large-scale compute and AI workloads across both on-premise and cloud environments. You’ll help design, build, and automate scalable security solutions that safeguard the firm’s infrastructure, data, and intellectual property - working at the intersection of cloud security, Linux, automation, and AI system protection.

The role sits within the Enterprise Security team, which is expanding in New York, and will suit an engineer comfortable balancing deep technical work with strategic platform improvements...

Key Responsibilities

• Design, implement, and maintain secure-by-default architectures across hybrid and multi-cloud environments, ensuring scalability and compliance
• Strengthen cloud and AI platform security, embedding controls that protect high-performance clusters, GPU-based compute, and distributed research systems
• Build automation to detect configuration drift, anomalies, and vulnerabilities, partnering with Security Operations to refine response playbooks and workflows
• Engineer and maintain IAM and authentication solutions, enforcing least-privilege access and integrating identity controls across hybrid infrastructure
• Lead initiatives to improve Linux and Kubernetes security, implementing configuration baselines, container hardening, and runtime protection
• Oversee endpoint and workload security, ensuring consistent enforcement of protection, monitoring, and incident readiness
• Operate and mature vulnerability management processes, prioritising risks and coordinating remediation across global teams
• Enhance observability and instrumentation for cloud and AI systems, improving detection, visibility, and forensic capabilities
• Contribute to DevSecOps pipelines, embedding automated checks, compliance testing, and security validation into deployment workflows
• Collaborate cross-functionally to develop secure-by-design principles that balance performance, scalability, and user experience
• Continuously assess emerging technologies, AI threat models, and attack vectors to inform long-term enterprise security strategy

What You’ll Bring...

• 4+ years’ professional experience in security engineering, systems engineering, or a related technical discipline
• Strong practical knowledge of Linux environments, including configuration, hardening, and observability at scale
• Hands-on experience in cloud security, ideally within AWS, including IAM, encryption, and network segmentation
• Proficiency in Python or similar scripting languages for automating security tooling, data collection, and remediation workflows
• Familiarity with Kubernetes and container security, including runtime controls and image management
• Understanding of vulnerability assessment and configuration management, including prioritisation and automation of fixes
• Exposure to endpoint and application security, with awareness of techniques for securing developer or research systems
• Experience supporting authentication and identity services, with practical knowledge of federation, SSO, and access policies
• (Preferred) Experience securing AI or machine learning environments, particularly around model access, GPU workloads, or data protection
• (Preferred) Understanding of DevSecOps practices, integrating automated checks into CI/CD pipelines

...

Apply for this role

All fields marked with * are required.