IT Security Engineer

We are looking for an IT Security Engineer with a strong Windows engineering background and practical exposure to modern platform security controls to help our global team secure Jane Street’s IT platforms. In this role, you’ll need strong judgement and discerning taste to prioritise potentially complex and extensive remediation efforts. We’ll lean on you to suggest where to focus our mitigation efforts, and to provide both technical advice and decision making on behalf of the group where needed.

In this role, you will proactively propose, design, test, implement and document strategic security controls. You will coordinate and deliver security solutions across our IT platforms while identifying opportunities to further automate intelligent workflows. You will help secure internal IT and remote working platforms through a combination of hands-on technical work, consultancy and security influence to the wider IT team. This role will encompass a range of responsibilities, including building security controls that scale, investigating emerging threats, developing new security tooling and driving vulnerability management initiatives.

This position sits within our IT Engineering group, a highly dedicated team of engineers who monitor and manage our environment across a physical/virtual computing landscape that spans three continents. Your analytical thinking and expertise will be invaluable as we support the daily work of our colleagues and keep our systems operating at the highest standard.

• Proficient in securing Windows OS platforms and resolving complex technical issues in a fast-moving environment
• Have hands-on experience utilising integrated security technologies for safeguarding Windows operating systems, including application control, host-based firewalls, auditing and event monitoring and disk encryption
• Skilled in administering endpoint security and vulnerability management solutions, including antivirus, anti-malware, EDR, vulnerability scanning and patch management
• Knowledgeable about security best practices, including operating system hardening, privileged access management and vulnerability mitigation
• Understand common threat tactics, techniques and procedures (TTPs) and effective countermeasures
• Well-versed in Windows core infrastructure services (AD/EntraID, PKI)
• Eager to produce scalable and repeatable security practices through automation
• Understand security tooling and APIs
• Flexible, reliable and highly collaborative
• Proven experience automating workflows in PowerShell or other scripting languages