Security Platform Engineer

We're representing a leading quantitative research and trading firm operating one of the most advanced compute and engineering environments in the industry. Following structural changes to part of its HPC capability, the organisation is investing heavily in strengthening its London-based security platform engineering function. This role sits within a specialist DevSecOps team focused on building and operating internal security services at scale. Rather than writing policy or handling tickets, you'll engineer the platforms that enable secure software delivery - spanning secrets management, PKI, secure build tooling and continuous compliance across a large Linux estate..., * Design and operate internal security platforms consumed by engineering and infrastructure teams

• Own and enhance enterprise secrets management capabilities (Vault focus), including lifecycle, rotation and access governance
• Lead improvements to firm-wide PKI, including certificate issuance, renewal and trust architecture
• Contribute to a large-scale PKI modernisation programme
• Build and extend tooling that supports automated compliance validation across infrastructure
• Embed security controls directly into CI/CD pipelines and developer workflows
• Develop internal automation and services using modern programming languages
• Improve resilience, scalability and observability of security-critical systems
• Troubleshoot complex issues across distributed Linux environments
• Identify architectural weaknesses and implement durable, engineering-led improvements

• 6-10 years' experience in software engineering, DevOps, security engineering or platform-focused roles within complex technical environments
• Strong engineering capability in Java or C# (Python also highly relevant)
• Proven experience working at scale in established, production-grade environments
• Deep familiarity with DevOps tooling including CI/CD pipelines (Jenkins, GitLab), Infrastructure-as-Code (Terraform, Ansible) and observability stacks (Prometheus, ELK, Grafana)
• Strong Linux systems knowledge
• Practical exposure to containerisation and orchestration (Docker, Kubernetes)
• Experience designing or operating one or more of:

• Public Key Infrastructure (PKI)
• Secrets management platforms (Vault strongly preferred)
• Secure software development lifecycle tooling

• Ability to build scalable, maintainable engineering solutions rather than one-off automation
• Strong diagnostic and troubleshooting skills across distributed systems
• Financial services experience helpful but not required - background in any mature, technically demanding environment is suitable

[Up to c. £325k Comp Package | Hybrid Working]