Senior Product Security Engineer- Systematic Quant Fund | London, UK

My client is a global quantitative and systematic investment manager, operating across all liquid asset classes worldwide. They are a technology- and data-driven group employing a scientific approach to investing, combining data, research, technology, and trading expertise to solve complex challenges. The company fosters a culture of innovation aimed at delivering high-quality returns for investors.

About the role

We are seeking a Senior Product Security Engineer to safeguard diverse technological systems, including cloud services, business applications, and core infrastructure. The role involves driving automated security processes, influencing system architecture, and leading strategic security initiatives. Collaboration with IT, cloud, and engineering teams is essential to implement security solutions for low-latency systems and multi-cloud platforms such as AWS, Azure, and Alibaba Cloud. The engineer will also secure hybrid infrastructures across Python, C++, and Kotlin/Java environments, ensuring robust protection for high-speed, data-driven operations.

Responsibilities

• Implement security controls and processes for product security across core trading infrastructure, cloud services, and business applications in Windows and Linux environments.
• Work with engineering and product teams to embed security into product design and development, leveraging experience in securing large-scale software systems in fast-paced settings.
• Develop and maintain a secure software development lifecycle (SDLC), emphasizing secure coding practices in languages like Python, C++, Rust, Go, Kotlin, and Java.
• Conduct threat modeling, vulnerability assessments, and security code reviews across various platforms, ensuring security is integrated at every development stage.
• Mentor and train engineering teams on security best practices and secure development processes in mixed cloud and operating system environments.
• Perform vendor security reviews to evaluate third-party security practices and ensure compliance standards.
• Integrate security scanning tools (SAST, DAST, etc.) into CI/CD pipelines and runtime environments for continuous security monitoring across Alibaba Cloud, AWS, Azure, and on-premises systems.
• Identify security risks proactively and develop mitigation strategies suitable for a high-stakes, fast-moving environment.

Requirements

• Minimum of 7 years' experience in product security or similar roles, with practical expertise in securing software at scale.
• Proven experience in secure coding and software development using languages such as Python, C++, Rust, Go, Kotlin, or Java.
• Strong background in software development, system architecture, and security tools.
• Deep understanding of security principles, techniques, and technologies related to software, products, cloud platforms, and business applications. Knowledge of low-latency financial systems is a plus.
• Experience securing Windows and Linux systems.
• Extensive experience with cloud platforms like AWS, Azure, and Alibaba Cloud, especially in hybrid environments.
• Expertise in threat modeling, risk assessment, and developing mitigation strategies for complex, large-scale systems.
• Experience integrating security tools into CI/CD pipelines and runtime environments.
• Ability to conduct vendor security reviews and manage third-party security assessments.
• Strong leadership, problem-solving, communication, and adaptability skills suitable for a senior role in a dynamic environment.

Note: Due to high application volume, only successful candidates will be contacted. This position is active and accepting applications.

Contact

If interested or seeking more information, contact:

George Hutchinson-Binks

Email: george.hutchinson-binks@oxfordknight.co.uk

Phone: (+44) 07885 545220

LinkedIn: linkedin.com/in/george-hutchinson-binks-a62a69252