Security Engineering Lead
About The Position
Hudson River Trading (HRT) is seeking an experienced Security Engineer to join our growing Enterprise Security team. This team is responsible for securing the systems and tools HRT employees rely on every day, including managing AI security, Cloud Security Posture Management (CSPM), Identity and Access Management (IAM), Public Key Infrastructure (PKI), Endpoint Security, Vulnerability Management, and protecting HRT’s infrastructure across on-prem and cloud environments. In this role, you will lead a small team of security engineers focused on enabling employees to work safely and productively from any device, anywhere. The ideal candidate is a hands-on, technical leader and security generalist with broad experience developing practical security solutions that enhance both protection and user experience, and the ability to quickly adapt in a fast-paced environment. Responsibilities range from managing device posture and machine identity across thousands of endpoints, to identifying vulnerabilities in servers, containers, and serverless workloads, securing AI agents with guardrails and containerization, and advising teams on securing productivity applications.
Requirements
- 7+ years of experience in security engineering
- 2+ years of experience leading a technical team
- Experience hardening Linux environments at scale using configuration management and infrastructure-as-code tooling
- Experience in cloud security posture management on GCP, Azure, and/or AWS
- Familiarity with emerging generative AI security tooling and best practices (guardrails, agents, sandboxing, MCP security, etc.)
- Familiarity with endpoint security technologies on macOS and Windows
- Familiarity with PKI workflows: certificate templates, issuance, renewal and revocation
- Proficiency in Python is required
- Strong ability to make principled decisions, balancing workforce productivity with security needs
- Curious, agile, eager to learn, and capable of implementing novel solutions, even when confronted with complexity or uncertainty
- Experience working with partners throughout the business to achieve company-wide impact
Responsibilities
- Define technical strategy for securing enterprise products and services
- Design, review, and implement robust security hardening solutions for hosts and workloads spanning multiple data centers, colocation facilities, public cloud services, offices, and remote endpoints running various operating systems and applications
- Build and maintain a unified vulnerability management solution from disparate agents, scanners, SBOM tools, and threat intelligence feeds
- Partner with developers, engineers, and vendors across the organization to identify, prioritize, and drive initiatives in AI security, IAM, PKI, endpoint security, and more
- Foster a high-performing and inclusive team environment
- Execute projects smoothly, both as an individual contributor and as a project lead
Benefits
- discretionary performance-based bonuses
- competitive benefits package
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
