Techfellow Limited
Infrastructure Security Engineer | Global Market Maker
Techfellow Limited, Chicago, Illinois, United States, 60290
Infrastructure Security Engineer | Global Market Maker
[Up to c. $325k Comp Package | Hybrid Working - 4 Days in Office]
Role Overview
We’re working with a global trading firm seeking an Infrastructure Security Engineer to help embed security into the very foundations of its platform. Sitting at the intersection of platform engineering and cybersecurity, you’ll play a hands-on role in securing core services that underpin trading systems worldwide - spanning Linux, Kubernetes, CI/CD, storage, and shared compute. This is a role for an engineer who thrives on automation and enjoys solving complex infrastructure problems through a security lens. You’ll design and implement secure authentication and access patterns, build automation around secrets management, and strengthen the firm’s ability to operate securely at scale across both cloud and on-prem environments.
Key Responsibilities
Design and enhance identity, authentication, and access management across core infrastructure services and applications
Implement and improve secrets management solutions (e.g. Vault or equivalent), automating lifecycle management and integration into engineering workflows
Build automation and infrastructure-as-code/policy-as-code frameworks to enforce security controls consistently at scale
Contribute to the secure design of CI/CD pipelines, ensuring security is embedded into build and deployment processes
Develop secure certificate and PKI workflows for service-to-service and user authentication
Collaborate with platform, cloud, and security engineers to deliver secure-by-default configurations and operational benchmarks
Support threat modelling, design reviews, and RFC processes to validate and improve security measures
Create technical documentation and onboarding material to enable safe and efficient adoption of new controls
What You’ll Bring...
3+ years’ experience in infrastructure security, DevSecOps, or SRE roles with a security focus
Strong scripting and automation skills (Python preferred; Golang or Java beneficial)
Hands-on experience with identity and access management solutions, authentication protocols (OIDC, Kerberos, LDAP), and access governance concepts
Practical knowledge of secrets management platforms and integration into large-scale infrastructure environments
Familiarity with PKI, TLS certificate management, and secure workflow integrations
Experience with cloud and on-prem infrastructure, including containerised environments (Docker, Kubernetes)
Understanding of Linux access controls, permissions, and secure system design patterns
A proactive, detail-oriented mindset - focused on scalable, pragmatic solutions over theoretical compliance
#J-18808-Ljbffr
Role Overview
We’re working with a global trading firm seeking an Infrastructure Security Engineer to help embed security into the very foundations of its platform. Sitting at the intersection of platform engineering and cybersecurity, you’ll play a hands-on role in securing core services that underpin trading systems worldwide - spanning Linux, Kubernetes, CI/CD, storage, and shared compute. This is a role for an engineer who thrives on automation and enjoys solving complex infrastructure problems through a security lens. You’ll design and implement secure authentication and access patterns, build automation around secrets management, and strengthen the firm’s ability to operate securely at scale across both cloud and on-prem environments.
Key Responsibilities
Design and enhance identity, authentication, and access management across core infrastructure services and applications
Implement and improve secrets management solutions (e.g. Vault or equivalent), automating lifecycle management and integration into engineering workflows
Build automation and infrastructure-as-code/policy-as-code frameworks to enforce security controls consistently at scale
Contribute to the secure design of CI/CD pipelines, ensuring security is embedded into build and deployment processes
Develop secure certificate and PKI workflows for service-to-service and user authentication
Collaborate with platform, cloud, and security engineers to deliver secure-by-default configurations and operational benchmarks
Support threat modelling, design reviews, and RFC processes to validate and improve security measures
Create technical documentation and onboarding material to enable safe and efficient adoption of new controls
What You’ll Bring...
3+ years’ experience in infrastructure security, DevSecOps, or SRE roles with a security focus
Strong scripting and automation skills (Python preferred; Golang or Java beneficial)
Hands-on experience with identity and access management solutions, authentication protocols (OIDC, Kerberos, LDAP), and access governance concepts
Practical knowledge of secrets management platforms and integration into large-scale infrastructure environments
Familiarity with PKI, TLS certificate management, and secure workflow integrations
Experience with cloud and on-prem infrastructure, including containerised environments (Docker, Kubernetes)
Understanding of Linux access controls, permissions, and secure system design patterns
A proactive, detail-oriented mindset - focused on scalable, pragmatic solutions over theoretical compliance
#J-18808-Ljbffr