Job Specifications
[Up to c. $350k Comp Package | Hybrid Working - 2 Days in Office]
Role Overview
We’re supporting a leading global quantitative trading firm that combines advanced research, distributed computing, and cutting-edge infrastructure to drive its trading and investment strategies. The organisation is now seeking a Security Engineer to strengthen its cyber defence and automation capabilities - enhancing detection systems, data processing pipelines, and security observability across its global platforms. This role isn’t a typical SOC position. Rather than focusing purely on triage or incident response, it’s about engineering automation, integration, and scalability into the firm’s detection and response systems. You’ll work at the intersection of software engineering and cybersecurity - helping to design secure data workflows, streamline log ingestion, and embed automation within CI/CD pipelines.
You’ll join a small, high-impact security engineering team that works directly with infrastructure and platform specialists to evolve global security architecture. The ideal candidate combines strong coding ability with a systems mindset — comfortable moving between Python, the Linux shell, and distributed telemetry stacks such as Elastic...
Key Responsibilities
Design, build, and maintain automated pipelines for log collection, enrichment, and analysis across hybrid environments
Configure and optimise log ingestion workflows and data transformation processes for high-volume, low-latency systems
Develop and maintain automation scripts and integrations (primarily in Python) to enhance monitoring, alerting, and response capabilities
Engineer integrations between SIEM, SOAR, and observability platforms (Elastic Stack preferred; Splunk also relevant)
Strengthen secure data processing and telemetry visibility across systems, ensuring data integrity and detection coverage
Contribute to CI/CD pipeline development for security tooling and automation workflows
Collaborate closely with infrastructure and DevOps teams to embed detection logic and observability early in the software lifecycle
Fine-tune DLP and UEBA frameworks to detect behavioural anomalies and safeguard intellectual property
Support the development of security automation frameworks that reduce manual effort and improve accuracy across the global environment
Participate in operational support rotations during business hours, including occasional weekend coverage for critical upgrades
What You’ll Bring...
5-8 years’ professional experience in security engineering, detection engineering, or adjacent security/infrastructure roles (internships or academic research experience valued)
Strong hands-on experience in Linux environments, including shell operations, system diagnostics, and vulnerability investigation
Proficiency in Python or a comparable programming language for automation, data processing, and system integration
Expertise with Elastic Stack (Elasticsearch, Logstash, Kibana) for log ingestion, search, and analytics (Splunk or other SIEM platforms also valuable)
Understanding of log processing pipelines, event correlation, and data normalisation across distributed systems
Familiarity with CI/CD pipelines and workflow automation, integrating security into build and deployment processes
Knowledge of network fundamentals, telemetry pipelines, and security data modelling
Strong analytical mindset with a bias toward problem-solving, efficiency, and scalability
(Preferred) Experience with threat detection, custom rule creation, or tuning of existing alerts
(Preferred) Exposure to incident response and forensics in high-performance or research-led environments
...
About the Company
At Techfellow, we connect top tech talent with leading financial firms worldwide. With a deep understanding of your business and tech needs, we match exceptional engineers, developers, and cybersecurity experts to the right opportunities.
Fit is our priority. We're selective, focusing on quality over quantity to find the best candidates for our valued partners!
Know more