IMC Trading
Overview
Infrastructure Security Engineer role at IMC Trading. We are looking for a passionate and pragmatic Infrastructure Security Engineer to join our Platform team. In this role, you’ll help build and scale security controls across IMC’s global infrastructure. You will be working closely with engineers responsible for Linux, Kubernetes, CI/CD, storage, and shared compute systems to ensure foundational security is deeply embedded in how we run and grow our platforms. This role is ideal for someone who enjoys solving complex infrastructure problems through a security lens. You’ll work hands-on to improve authentication, secrets management, and access controls — while building the tooling and automation that make secure-by-default the easy path for engineering teams. You’ll be part of a small and fast-moving team within the Platform department, which operates IMC’s internal developer platform and core infrastructure services. Your work will directly improve the auditability, integrity, and resilience of the systems that underpin our global trading environment. Base pay range
$160,000.00/yr - $220,000.00/yr Your Core Responsibilities:
Improve authentication and secure identity propagation in critical systems using OIDC-OAuth2, LDAP, Kerberos protocols Manage and improve PKI and TLS certificate workflows, supporting secure service-to-service and user authentication across environments Design and implement authorization and secure access flows across our infrastructure and data technology stack Build automation around HashiCorp Vault for secrets lifecycle management, enabling integration into workflows and usage patterns Develop infrastructure-as-code and policy-as-code to deploy and enforce access and secret policies at scale Collaborate with Platform and Engineering teams to co-design secure default configurations and benchmarks Contribute to documentation, RFCs, and onboarding to promote safe adoption of new controls Participate in platform threat modeling and security control design reviews Your Skills and Experience:
3–7 years of experience in DevSecOps or Infrastructure Security, or as SRE with security projects Proficient with building automations in Python, Java or Golang and infrastructure-as-code (preferably Terraform) when applicable Adept at secret management (preferably HashiCorp Vault) and secure workflow integrations Hands-on experience with authentication protocols (OIDC, Kerberos, LDAP), IAM solution architecture and access governance concepts Proficient with PKI and TLS certificate management, including issuance, rotation, and integration into secure infrastructure workflows Familiarity with implementing Linux access controls, permissions, secure access patterns Comfortable working with engineers across teams and information security, acting as the bridge between technical system requirements and security goals Note: Immigration sponsorship is not offered for this specific opening.
#J-18808-Ljbffr
Infrastructure Security Engineer role at IMC Trading. We are looking for a passionate and pragmatic Infrastructure Security Engineer to join our Platform team. In this role, you’ll help build and scale security controls across IMC’s global infrastructure. You will be working closely with engineers responsible for Linux, Kubernetes, CI/CD, storage, and shared compute systems to ensure foundational security is deeply embedded in how we run and grow our platforms. This role is ideal for someone who enjoys solving complex infrastructure problems through a security lens. You’ll work hands-on to improve authentication, secrets management, and access controls — while building the tooling and automation that make secure-by-default the easy path for engineering teams. You’ll be part of a small and fast-moving team within the Platform department, which operates IMC’s internal developer platform and core infrastructure services. Your work will directly improve the auditability, integrity, and resilience of the systems that underpin our global trading environment. Base pay range
$160,000.00/yr - $220,000.00/yr Your Core Responsibilities:
Improve authentication and secure identity propagation in critical systems using OIDC-OAuth2, LDAP, Kerberos protocols Manage and improve PKI and TLS certificate workflows, supporting secure service-to-service and user authentication across environments Design and implement authorization and secure access flows across our infrastructure and data technology stack Build automation around HashiCorp Vault for secrets lifecycle management, enabling integration into workflows and usage patterns Develop infrastructure-as-code and policy-as-code to deploy and enforce access and secret policies at scale Collaborate with Platform and Engineering teams to co-design secure default configurations and benchmarks Contribute to documentation, RFCs, and onboarding to promote safe adoption of new controls Participate in platform threat modeling and security control design reviews Your Skills and Experience:
3–7 years of experience in DevSecOps or Infrastructure Security, or as SRE with security projects Proficient with building automations in Python, Java or Golang and infrastructure-as-code (preferably Terraform) when applicable Adept at secret management (preferably HashiCorp Vault) and secure workflow integrations Hands-on experience with authentication protocols (OIDC, Kerberos, LDAP), IAM solution architecture and access governance concepts Proficient with PKI and TLS certificate management, including issuance, rotation, and integration into secure infrastructure workflows Familiarity with implementing Linux access controls, permissions, secure access patterns Comfortable working with engineers across teams and information security, acting as the bridge between technical system requirements and security goals Note: Immigration sponsorship is not offered for this specific opening.
#J-18808-Ljbffr