Tower Research Capital, a high-frequency proprietary trading firm founded in 1998, seeks a Senior Security Engineer to join our Information Security team.
The position calls for using a diverse set of technical and security skills with the ability to quickly adapt to and learn unfamiliar technologies within a regulated financial environment.
Key responsibilities:
Develop/implement automated systems (python/bash) to help spot known security exposures.
Engineer/administer security infrastructure to optimize efficiency, expand capabilities, meet client requirements.
Support security infrastructure and act as an escalation point for the firm in troubleshooting/supporting any issues. (Hashicorp vault / IAM / SIEM / EDR).
Consult on discovered security flaws, how to exploit them, and how to remediate flaws.
Participate in attack simulation exercises on a periodic basis.
Contribute to threat and vulnerability management.
Continuous assessment around the effectiveness of defense response.
Ensure adherence to appropriate standards, best practices, workplace policies and procedures.
Work effectively as a team member, providing hands-on support to clients, maintaining communication and updating senior staff on progress.
Participate in Incident Response procedures if/when required.
Skills and attributes for success
Exposure to Unix/Linux environments, with knowledge of commands & shell.
Scripting and or development capability a must (python/bash)
Strong understanding of the intelligence lifecycle and models including Cyber Kill Chain and MITRE ATT&CK framework.
Exposure and understanding of cyber threats in the financial sector
Understand DeFi / Blockchain thoroughly.
Experience with SIEM technologies, threat hunting, monitoring and investigations.
Excellent analytic and writing capabilities.
Strong documentation required.
Mentor and guide security analysts in cyber threat intelligence skills.
Ability to work with minimum guidance.
Working knowledge of JIRA/Confluence
Experience and Other requirements:
At least five years of relevant experience, successfully delivering in an Enterprise environment.
Bachelor/Masters of Engineering in Computer Science / Information Security / Cyber Security
Network and security and tools, including IDS/IPS, NAC,DLP, VPN, firewall management and audit, endpoint, anti-malware, database audit and monitoring
Strong experience with secure architecture design.
Security expertise in one or more of: python, bash, C, C++, reverse engineering, wireless networks, common web vulnerabilities (SQLi, XSS, CSRF), exploit development.
Security applications utilized for logging, packet capture, email, directory services, web, authentication, remote access, and encryption.
Database audit/security background is a strong plus.
Cloud security deployment and controls.
Have passion to learn about evolving technologies.
Self-starter with a can-do attitude capable of overcoming difficult challenges.
Communicate clearly and effectively with the distributed team and stakeholders.
Showcase good critical thinking and analytical skills.
Ability to stay focused while working under pressure.
Flexible to work in different time-zones, based on business requirements.
Conduct training and mentoring of team members.
Benefits
Tower continues to enhance the in-house trading system and strategies that have positioned the firm as a leader in the thriving field of quantitative trading. While Tower offers challenges and rewards rivaling those of any Wall Street firm, Tower’s cubicle-free workplace, jeans-clad workforce, and well-stocked kitchens reflect the premium the firm places on quality of life. Benefits include:
Competitive salary and performance-based bonuses
5 weeks of paid vacation per year
Breakfast, lunch, dinner, and snacks on a daily basis
Cab facility within Gurgaon
Health club allowance