Senior Security Engineer - Threat Intelligence & Vulnerability Engineering

Senior Security Engineer - Threat Intelligence & Vulnerability Engineering

Job Description

[Up to c. $275k Comp Package | Hybrid Working - 2 Days in NYC Office]

Role Overview

We’re representing a globally recognised electronic trading and financial technology firm operating at significant scale across institutional markets. As the organisation continues to expand its platform and connectivity footprint, strengthening its cyber defence capability has become a critical priority. They are seeking a Senior Cyber Security Engineer to take ownership of threat intelligence and vulnerability management capabilities across the enterprise. This is a high-impact engineering role focused on building, evolving, and operationalising intelligence-led security practices - ensuring the organisation can proactively identify, assess, and mitigate emerging threats across a complex technology estate...

Key Responsibilities

• Own and develop the firm’s threat intelligence capability, delivering actionable insights to security, engineering, and leadership teams
• Analyse global threat activity, translating attacker behaviours, TTPs, and indicators into meaningful defensive actions
• Design and refine intelligence workflows, ensuring timely and relevant dissemination across SOC and engineering functions
• Monitor external intelligence sources, vendor advisories, and zero-day disclosures, assessing impact across internal systems
• Define and maintain vulnerability management processes, standards, and reporting frameworks
• Partner with engineering and infrastructure teams to ensure effective remediation and risk reduction
• Lead risk-based vulnerability management, driving prioritisation and remediation across infrastructure and applications
• Build automation across intelligence and vulnerability workflows to improve efficiency and response times
• Manage and optimise tooling across TIP platforms, SIEM integrations, and threat data pipelines
• Produce clear, executive-level reporting on threat landscape, risk exposure, and remediation progress
• Continuously improve how security data is collected, enriched, and operationalised across the organisation

What You’ll Bring…

• 8-14 years’ experience in cybersecurity engineering or operations, with strong focus on threat intelligence and/or vulnerability management
• Deep understanding of the threat intelligence lifecycle, from collection through to analysis and dissemination
• Strong knowledge of attacker methodologies and frameworks such as MITRE ATT&CK
• Hands-on experience with Threat Intelligence Platforms (TIP), threat feeds, OSINT sources, and SIEM/SOAR integrations
• Proven experience running or contributing to enterprise vulnerability management programmes
• Strong understanding of vulnerabilities, exploit techniques, and remediation strategies (e.g. CVEs, OWASP Top 10, zero-days)
• Experience automating workflows using Python, PowerShell, or similar scripting languages
• Ability to build and communicate security metrics, dashboards, and executive reporting
• Familiarity with security frameworks such as NIST CSF and their practical application
• Strong stakeholder engagement skills, able to work across technical teams and business leadership
• (Preferred) Experience within financial services or other highly regulated industries
• (Preferred) Industry certifications such as CISSP, CISM, or equivalent

...

Apply for this role

All fields marked with * are required.