Lead Security Engineer

Lead Security Engineer - Trading Firm - London (On-Site) - Up to £160,000 Per Annum (Base)

A leading global proprietary trading firm is seeking a Lead Security Engineer to define and evolve defence-in-depth security architecture across a complex hybrid estate spanning on-premise data centres and Microsoft Azure.

This role is ideally suited to a hands-on Security Architect with deep infrastructure roots across VMware, Active Directory, Windows Server, and enterprise cloud security, who is comfortable operating across both architectural governance and engineering implementation within a high-availability trading environment.

The Role

As Lead Security Engineer, you will sit within a small, high-performing Security Architecture & Engineering function responsible for securing critical trading systems and enterprise platforms.

You will collaborate closely with Infrastructure, DevOps, Platform, and Engineering teams to ensure all new and existing solutions align with defined security standards, regulatory frameworks, and architectural guardrails.

This is a design-led role with hands-on depth — ideal for someone who has grown from infrastructure engineering into enterprise security architecture.

Key Responsibilities

  • Define and maintain security blueprints, reference architectures, and guardrails across:
  • Hybrid infrastructure (multi-datacentre VMware estate + Azure IaaS/PaaS/SaaS)
  • Identity platforms (Entra ID / Azure AD hybrid)
  • Privileged Access and role-based access control models
  • Secure connectivity between internal trading platforms and external counterparties
  • Review and sign off HLDs and LLDs across infrastructure and application projects
  • Conduct structured security risk assessments using frameworks such as NIST, CIS Controls, STRIDE, OWASP and MITRE ATT&CK
  • Provide go-live security assurance, identifying risks, remediation controls, and risk acceptance where appropriate
  • Establish and maintain governance processes to ensure security architecture aligns with enterprise standards and regulatory requirements (ISO27001, GDPR)

Skills & Experience

  • Proven experience operating as an Infrastructure Security Architect, Security Architect, or senior-level Security Engineer within financial services, trading, or other high-availability, low-latency environments.
  • Strong architectural expertise across hybrid infrastructure, including:
  • Enterprise network security (segmentation, firewalls, secure connectivity, zero-trust principles)
  • Multi-datacentre environments (VMware, Windows Server, Active Directory, DR design)
  • Cloud security architecture, particularly Microsoft Azure (IaaS, PaaS, SaaS)
  • Identity & Access Management (Entra ID / Azure AD, MFA, Conditional Access, PAM)
  • Experience defining and reviewing High-Level and Low-Level Designs (HLD/LLD), setting security standards, and providing architectural governance across infrastructure and cloud initiatives.
  • Strong understanding of security frameworks and best practice controls (e.g., NIST, CIS, ISO 27001) and ability to align architecture to regulatory requirements.
  • Experience shaping security tooling strategy across infrastructure layers (SIEM, vulnerability management, endpoint security, PAM, DLP), including vendor evaluation and roadmap input.
  • Ability to operate at both deep technical and strategic levels — influencing infrastructure, engineering, and senior stakeholders on long-term security direction.
  • Comfortable working in fast-paced, mission-critical environments where resilience, performance, and risk management are critical.

Package

  • Up to £160,000 base salary
  • Discretionary annual bonus
  • Comprehensive benefits package
Apply Now
Apply Now

Job Details

Company
Intec Select
Location
City of London, London, United Kingdom
Posted