Technology - Security Engineer

Location: Fully Remote (Preference for Europe or Dubai)

Reporting to: Head of TechOps

At AlgoQuant, we're building the future of digital asset management; grounded in rigorous research, world-class technology and a relentless focus on performance.

We began as a proprietary trading firm, developing sophisticated algorithmic strategies and operating in some of the most complex and fast-moving markets. That DNA remains at our core, but today we are evolving into a fully remote, globally distributed Investment Management business. This transformation reflects a broader ambition: to scale our edge, deliver institutional-grade results, and set new standards for the industry.

Our quantitative environment is built to empower innovation, combining vast data capabilities, disciplined model development, and highly automated execution. Risk is embedded in every layer of our thinking, with robust measurement, control, and scenario analysis integrated into our systems and decision-making. Technology is not just a tool for us, it’s a core competency and a competitive advantage.

We are seeking a Security Engineer to strengthen AlgoQuant’s infrastructure and lead the development of a scalable, robust security foundation as the company transitions from startup to mature enterprise.

This is a hands‑on, high‑impact role focused on securing cloud‑native and hybrid environments. The successful candidate will design and implement systems that are secure by design, automated where possible, and aligned with Zero Trust and identity‑driven security principles. Collaboration across engineering, operations, and compliance will be central to ensuring security is deeply embedded in our technology and culture.

• Architect, deploy, and maintain secure network and system infrastructure across AWS, corporate, and hybrid environments, data centers.
• Implement and manage Zero Trust Architecture (ZTA) frameworks, leveraging tools such as Cato for secure access, segmentation, and traffic control.
• Lead configuration and hardening of Microsoft Entra ID (Azure AD), SSO, and Intune to establish robust identity, device, and access management policies.

• Oversee and continuously enhance system, application, and network security controls, including intrusion detection, endpoint protection, and vulnerability management.
• Automate security monitoring, compliance checks, and remediation workflows
• Integrate security controls into CI/CD and infrastructure‑as‑code pipelines to ensure consistent enforcement and auditability.
• Conduct regular risk assessments, security audits, and incident response exercises.
• Develop and enforce security baselines, policies, and monitoring for both cloud and on‑prem environments.
• Collaborate with cross‑functional teams to ensure compliance with internal and regulatory standards.

• Deep expertise in network, system, identity, and datacenter security, with hands‑on experience securing enterprise‑grade or high‑scale hybrid environments.
• Strong practical experience with Microsoft Entra ID (Azure AD), including SSO, Conditional Access, MFA, and identity lifecycle management, as well as Microsoft Intune for endpoint management.
• Proven experience designing and implementing Zero Trust Architecture (ZTA), including work with Cato Networks or comparable SASE / secure access frameworks.
• Strong background in AWS security, including IAM roles and policies, least‑privilege access models, VPC design, network segmentation, and cloud hardening.
• Experience securing on‑prem and colocation datacenter environments, including network segmentation, firewalling, secure routing, physical and logical access controls, and secure management of servers, hypervisors, and core infrastructure services.
• Solid administration experience in Windows and Linux environments, including OS hardening, patch management, secure baseline configurations, intrusion detection, vulnerability scanning, and remediation.
• Working knowledge of core security engineering tools, including SIEM and log analysis platforms (e.g., Splunk, Sentinel), vulnerability management tools (e.g., Tenable, Qualys), EDR/XDR, secrets management solutions, and certificate/key management.
• Ability to leverage scripting and automation (e.g., PowerShell, Bash, Python) to improve security operations, reduce manual effort, and enforce consistency.
• Familiarity with Infrastructure‑as‑Code (IaC) and integrating security controls into CI/CD pipelines.
• Experience leading or participating in security incident response, including investigation, containment, root‑cause analysis, and post‑incident improvements.
• Ability to perform threat modeling, risk assessment, and security architecture reviews, making pragmatic trade‑offs based on business impact and risk.
• Familiarity with security compliance frameworks (e.g., SOC 2, ISO 27001) and supporting audits through technical controls and evidence.
• Experience evaluating, selecting, and integrating security tools and vendors in production environments.
• Excellent analytical and communication skills, with the ability to explain complex security topics to both technical and non‑technical stakeholders.
• A proactive, ownership‑driven mindset, focused on clarity, resilience, and continuous improvement of the overall security posture.

• A Zero Trust‑aligned infrastructure where identity, access, and network boundaries are clearly defined, enforced, and monitored.
• Cato‑based secure networking ensures consistent access control and visibility across all users and environments.
• Security controls are automated, auditable, and adaptive, minimizing operational friction and response times.
• Incident response is reliable, rehearsed, and continuously refined through proactive testing.
• Collaboration across TechOps, DevOps, Engineering, and Compliance results in a security‑first culture that enables innovation without compromising safety.
• AlgoQuant’s overall security posture evolves toward proactive protection, enabling confident scaling of the business.

Work at the forefront of quantitative trading and AI‑driven research in crypto markets.

Collaborate with world‑class researchers, traders, and engineers to drive technological excellence.

Competitive compensation, including performance‑based incentives and long‑term upside potential.