Infrastructure Security Engineer
Infrastructure Security Engineer
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
Infrastructure Security Engineer
We are looking for a passionate and pragmatic Infrastructure Security Engineer to join our Platform this role youll help build and scale security controls across IMCs global infrastructure. You will be working closely with engineers responsible for Linux Kubernetes CI/CD storage and shared compute systems to ensure foundational security is deeply embedded in how we run and grow our platforms.
This role is ideal for someone who enjoys solving complex infrastructure problems through a security lens. Youll work hands-on to improve authentication secrets management and access controls while building the tooling and automation that make secure-by-default the easy path for engineering teams.
Youll be part of a small and fast-moving team within the Platform department which operates IMCs internal developer platform and core infrastructure services. Your work will directly improve the auditability integrity and resilience of the systems that underpin our global trading environment.
Your Core Responsibilities:
- Improve authentication and secure identity propagation in critical systems using OIDC-OAuth2 LDAP Kerberos protocols
- Manage and improve PKI and TLS certificate workflows supporting secure service-to-service and user authentication across environments
- Design and implement authorization and secure access flows across our infrastructure and data technology stack
- Build automation around HashiCorp Vault for secrets lifecycle management enabling integration into workflows and usage patterns
- Develop infrastructure-as-code and policy-as-code to deploy and enforce access and secret policies at scale
- Collaborate with Platform and Engineering teams to co-design secure default configurations and benchmarks
- Contribute to documentation RFCs and onboarding to promote safe adoption of new controls
- Participate in platform threat modeling and security control design reviews
Your Skills and Experience:
- 37 years of experience in DevSecOps or Infrastructure Security or as SRE with security projects
- Proficient with building automations in Python Java or Golang and infrastructure-as-code (preferably Terraform) when applicable
- Adept at secret management (preferably HashiCorp Vault) and secure workflow integrations
- Hands-on experience with authentication protocols (OIDC Kerberos LDAP) IAM solution architecture and access governance concepts
- Proficient with PKI and TLS certificate management including issuance rotation and integration into secure infrastructure workflows
- Familiarity with implementing Linux access controls permissions secure access patterns
- Comfortable working with engineers across teams and information security acting as the bridge between technical system requirements and security goals
Please note that immigration sponsorship is not offered for this specific opening.
The Base Salary range for the role is included below. Base salary is only one component of total compensation; all full-time permanent positions are eligible for a discretionary bonus and benefits including paid leave and visit Benefits - US IMC Trading for more comprehensive information.
About Us
IMC is a global trading firm powered by a cutting-edge research environment and a world-class technology backbone. Since 1989 weve been a stabilizing force in financial markets providing essential liquidity upon which market participants depend. Across our offices in the US Europe Asia Pacific and India our talented quant researchers engineers traders and business operations professionals are united by our uniquely collaborative high-performance culture and our commitment to giving back. From entering dynamic new markets to embracing disruptive technologies and from developing an innovative research environment to diversifying our trading strategies we dare to continuously innovate and collaborate to succeed.
Employment Type
Full Time
