Cloud Security Engineer

LMAX Group is a global financial technology company and the leading independent operator of multiple institutional execution venues for FX and cryptocurrency trading. The Group's portfolio includes LMAX Exchange (institutional FX exchange and FCA regulated MTF), LMAX Global (FCA and CySec regulated brokers), and LMAX Digital (GFSC regulated institutional spot crypto currency exchange).

Our mission is to create a level playing field for all participants in the world's biggest financial markets, through transparent, precise, and consistent execution, based on robust trading technology.

We are looking for people who want to help us change the game, not just play it.

LMAX Group fosters inclusive recruitment practices. We are an equal opportunity employer and welcome everyone to our team. We encourage people of colour, women, members of the LGBTQ+ community, and people with disabilities to apply. Please let us know if you need reasonable adjustments at any point in the application or interview process.

This role involves managing our Cloud Infrastructure Security Posture across our brands, working with colleagues in New York, Singapore, and New Zealand. You will ensure development in the cloud adheres to high security standards, drive towards Compliance-As-Code, and monitor our environment for configuration and build improvements.

You will collaborate with technology teams to enhance the security of our digital currency trading and custody solutions, including how they interact with blockchains and on-premises low latency exchanges, focusing on transaction confidentiality, integrity, and environment availability.

The role is hybrid, requiring commuting twice a week to our headquarters in Shepherd's Bush.

• Implement and automate security controls across cloud environments using tools like Terraform and Ansible.
• Provide cloud security guidance, awareness, and reviews in line with standards such as NIST.
• Implement third-party security tools and assist in incident response with the CSOC team.
• Build and enforce cloud-native security tools, conduct threat modelling, and architectural reviews.
• Support risk, compliance, and governance efforts; promote cloud security practices.
• Map attack paths and lead control implementation to mitigate vulnerabilities.
• Enhance alerts and monitoring in collaboration with SOC tools.
• Maintain confidentiality, integrity, and availability of LMAX information assets.
• Continuously improve cloud monitoring and alerting systems.

• Experience with AWS security controls; Azure experience is a plus.
• Knowledge of cloud networking.
• Experience securing Kubernetes environments, including logging and auditing.
• Automation experience in agile environments, scripting skills (e.g., Python), and CI/CD platforms.
• Knowledge of Infrastructure as Code (IaC) and Policy as Code practices.
• Stakeholder management and leadership skills; interest in open-source tech.
• Experience with deployment pipelines, Git, GitLab, Lambda, Cloudflare, etc.

• 25 days holiday, bonus, pension contribution.
• Private medical, dental, vision coverage, life assurance, critical illness cover.
• Wellness programs, volunteering days, learning initiatives.
• Electric Vehicle Scheme, Cycle to Work, Season Ticket Loan.