Cloud Security Engineer

LMAX Group is a global financial technology company and the leading independent operator of multiple institutional execution venues for FX and cryptocurrency trading. The Group's portfolio includes LMAX Exchange (institutional FX exchange and FCA regulated MTF), LMAX Global (FCA and CySec regulated brokers), and LMAX Digital (GFSC regulated institutional spot crypto currency exchange).

Our mission is to create a level playing field for all participants in the world's biggest financial markets, through transparent, precise, and consistent execution, based on robust trading technology.

We are looking for people who want to help us change the game, not just play it.

LMAX Group fosters inclusive recruitment practices. We are an equal opportunity employer as we welcome everyone to our team. We encourage people of colour, women, people from LGBTQ+ community, and people with disabilities to apply. Please let us know if you need reasonable adjustments at any point in the application or interview process.

About the role:

This role involves managing our Cloud Infrastructure Security Posture across our brands, working with colleagues in New York, Singapore, and New Zealand. You will ensure development in the cloud adheres to the highest security standards, driving towards Compliance-As-Code and monitoring our environment for configuration and build improvements.

You will collaborate with technology teams to enhance the security of our digital currency trading and custody solutions, focusing on transaction confidentiality, integrity, and the availability of trading environments for LMAX customers.

The role is hybrid, with an expectation to commute twice a week to our headquarters in Shepherd's Bush.

Responsibilities:

• Implement and automate security controls across complex Cloud environments using tools like Terraform and Ansible.
• Provide Cloud security guidance, conduct reviews, and ensure alignment with standards such as NIST.
• Implement third-party security tools and assist in incident response, working with the CSOC team on Cloud threats and events.
• Build and enforce Cloud-native security tools, conduct threat modelling, and architectural reviews to improve security practices.
• Support risk, compliance, and governance initiatives, promote Cloud security, and identify platform improvements.
• Map attack paths and lead the implementation of controls to mitigate risks.
• Collaborate with the SOC tools team to improve alerts and monitoring.
• Maintain the confidentiality, integrity, and availability of LMAX information assets.
• Continuously improve monitoring and alerting systems feeding into SOC tools.

Requirements:

• AWS expertise & Cloud Security: Experience in implementing security controls across AWS; Azure knowledge is a plus.
• Cloud & Networking Skills: Experience with cloud networking.
• Kubernetes: Experience securing Kubernetes environments, including logging and auditing.
• Automation & Agile: Experience with CI/CD, scripting (e.g., Python), and automating security processes.
• Infrastructure & Compliance as Code: Knowledge of IaC and Policy as Code to enhance security maturity.
• Stakeholder Management & Leadership: Ability to manage stakeholders, guide engineers, and interest in open-source technologies.

Benefits include 25 days of holiday, bonus, pension contributions, private medical/dental/vision coverage, life assurance, critical illness cover, and wellness programs with access to ClassPass.