Description
Fluent Trade Technologies is a global Fintech leader, providing high-performance technology to the world’s largest banks and brokers. We specialize in ultra-low latency solutions and market data, operating R&D centers in Jerusalem alongside global development and sales hubs across Europe, Asia and the US.
We are looking for a Senior IT/Security Operations Engineer to own and advance our security operations capability. This is a senior individual contributor role with a broad scope spanning SIEM/SOC operations, threat detection, SOAR automation, and infrastructure hardening. You will be a key technical anchor, ensuring our trading infrastructure is continuously monitored, hardened, and resilient.
Key Responsibilities
- Own and administer the SIEM platform, including log onboarding, parser development, and correlation rule tuning.
- Monitor security events in real-time, leading triage and response for escalated incidents.
- Design, build, and maintain SOAR playbooks and automation scripts (Python, PowerShell, or bash) to reduce MTTR.
- Operate and tune vulnerability scanning tools across servers, endpoints, and network infrastructure.
- Define and enforce hardening baselines for Linux and Windows using frameworks like CIS Benchmarks.
- Administer the organization’s EDR/XDR platform, managing policies, exclusions, and response actions.
- Lead periodic user access reviews and audit privileged access (PAM) usage.
- Integrate security controls and checks into CI/CD pipelines (Jenkins, GitLab CI, GitHub Actions).
Requirements
- 6+ years of experience in IT security, security operations, or a combined SecOps/DevSecOps role.
- Proven experience operating SIEM platforms and building SOAR playbooks in production environments.
- Deep proficiency in Linux and Windows hardening.
- Strong scripting ability in Python, PowerShell, or bash for operational automation.
- Expertise with vulnerability management tools (Tenable, Qualys, Rapid7) and EDR platforms.
- Solid understanding of IAM concepts, RBAC, and CI/CD security integration.
- Ability to act as a senior technical communicator and stay calm under pressure during incidents.
Preferred Qualifications
- Experience in fintech, capital markets, or trading platform environments (strong advantage).
- Familiarity with financial industry frameworks (PCI-DSS, DORA, FFIEC).
- Cloud security operations experience (AWS, Azure, or GCP).
- Certifications: CISSP, CISM, GCIA, GCIH, or Splunk Certified Power User.
- Experience mentoring junior security engineers or analysts
