Senior Security Engineer

About the Role

Cantor’s Information Security team protects the firm’s global infrastructure across firewalls, remote access, and critical network platforms. We collaborate closely with engineering, architecture, and external partners to define and deliver best-in-class network security across the enterprise.

We are looking for a Senior Security Engineer to act as a senior technical authority across Cantor, BGC, and Newmark. This is a highly hands-on role focused on architecture, engineering excellence, and technical leadership at scale.

What You’ll Do

As a Senior Security Engineer, you will:

  • Own the architecture, design, and technical direction of network security platforms.
  • Lead evaluation, selection, and deployment of advanced security technologies.
  • Drive resolution of complex, high-impact incidents as the final technical escalation point.
  • Define and execute multi-year initiatives across automation, observability, and modernization.
  • Influence engineers, architects, and leadership to align on a strategic security roadmap.
  • Mentor team members and elevate the technical bar across Information Security.

Key Responsibilities

Architecture & Strategy

  • Define and own security architectures, standards, and reference patterns
  • Align designs with business objectives and risk frameworks

Engineering & Implementation

  • Lead complex implementations, upgrades, and transformations
  • Provide deep technical oversight on critical changes

Incident & Problem Leadership

  • Act as final escalation point for major incidents
  • Drive root cause analysis and enterprise-wide remediation strategies

Leadership & Collaboration

  • Mentor engineers and lead cross-functional initiatives
  • Partner with Architecture, SOC, NOC, Infrastructure, and vendors

Core Technical Expertise

  • Firewalls: Palo Alto (Panorama, PAN-OS, advanced policy design)
  • Application Delivery: F5 (LTM, GTM/DNS)
  • Web Application Firewalls (WAF): Cloudflare preferred (Akamai, AWS WAF, Imperva, F5 also considered)
  • Networking: BGP, OSPF, segmentation, zero trust architecture
  • Security Domains: VPN/ZTNA, DDoS mitigation, hybrid cloud security

Nice to Have

  • Zero Trust (ZTNA), SASE architectures
  • Cloud security (AWS, Azure, GCP)
  • Network automation (Terraform, Ansible, Python)

What We’re Looking For

  • Proven ability to own and deliver at scale
  • Strong track record of influencing without authority
  • Ability to translate complex technical concepts for both technical and executive audiences
  • Deep expertise across network security architecture and engineering

Experience & Qualifications

  • 10+ years in network security engineering/architecture (senior/staff level)
  • Bachelor’s degree (or equivalent experience)
  • Strong experience with:
  • Palo Alto, F5, WAF platforms
  • Hybrid network environments
  • Cloud networking (AWS, Azure, GCP)
  • Logging/observability (e.g., Splunk)

Preferred Certifications:

PCNSE, CCIE Security, JNCIE, F5-CSE/CTS, CISSP

Apply Now
Apply Now

Job Details

Company
Cantor Fitzgerald
Location
London Area, United Kingdom
Posted