Cybersecurity Engineer - EU/US Timezones

Company Overview

Hermeneutic Investments is a best‑in‑class proprietary trading firm and hedge fund. It deploys research‑driven discretionary and systematic strategies as well as makes strategic long‑term investments. The partners' decade‑long history of success in trading and business building, together with a firm‑wide cultural emphasis on alpha generation, open debate, relentless iteration, and teamwork, are key to the firm's continued expansion in a challenging market environment that has hamstrung competitors. A hard‑wired emphasis on risk management and opportunistic market participation ensures that Hermeneutic Investments will continue its growth trajectory in the coming decades.

Job Overview

We’re looking for a Junior–Mid Cybersecurity Engineer who is hands‑on with security operations and excited to improve our defenses across cloud, endpoints, identity, and collaboration tooling. You’ll help run the daily security program, tune and maintain controls, investigate alerts, and contribute to projects that raise our overall security posture. Security Engineering manages our deployed security solutions and controls, implements new security technologies, and evaluates emerging solutions for potential adoption. This role handles all day‑to‑day security operations and partners closely with IT, SRE, and Product Engineering to keep our environments safe and compliant.

Responsibilities

• Operations & Monitoring

• Own day‑to‑day security operations: triage alerts, investigate events, and drive incidents through containment, eradication, and post‑incident review.
• Maintain detection rules, playbooks, and runbooks; continually reduce false positives and MTTR.
• Troubleshoot users on issues with security tooling.

• Tools & Controls

• Review and harden AWS security services (e.g., IAM/SCPs, GuardDuty, Security Hub, CloudTrail/Config, KMS, WAF).
• Operate MDM for device compliance, disk encryption, patching, and baseline configurations.
• Operate AV/EDR and firewall policies; support enterprise browser security policies and extensions.
• Harden Cloud services and partners (DLP, context‑aware access, OAuth app controls, group/SSO hygiene, 2SV/passkeys).
• Conduct POCs and evaluation on security tools for adoption.
• Support IT operations when needed.

• Engineering & Enablement

• Implement new security technologies and integrations; document deployments and handoffs.
• Create security automations for tooling.

• Risk & Posture

• Support asset/inventory accuracy, least‑privilege access reviews, and change control.
• Assist with security reviews, vendor risk, and audit evidence for SOC 2/ISO 27001‑style controls.

Requirements

• At least 5 years of security engineering background and experience with at least one of the following: SIEM, MDM, system hardening, practical cloud security.
• Experience in tool lifecycle implementation – from Proof of Concept through integration and decommissioning.
• Ability to work across time‑zones when needed.
• Solid understanding of computing systems and their operations.
• Ability to work in a team and flexible deliverables.
• Candidates must have working rights in the location of this role; visa sponsorship is not available.

Nice to Have

• Hands‑on experience with cloud platforms (AWS/Google/Azure).
• Experience with security automation.
• First‑hand experience with development of security processes.
• IT background.

Company Values

• Drive – We believe the best team members are deeply passionate about what they do. That passion fuels their growth, drives them to seek out the best teams, and leads them to hold high expectations of themselves in pursuit of excellence.
• Ownership – We aim to extend ownership as broadly as possible across the firm. In return, we value people who take initiative, step up when needed, and treat the company’s goals as their own.
• Judgment – We value those who see the big picture and focus on what truly drives impact and results. They use time wisely, adapt across domains, and always prioritize outcomes over comfort zones.
• Openness – We foster a culture of open communication, mutual challenge, and shared growth. We believe constructive debate and proactive knowledge sharing lead us closer to the truth—and better decisions.
• Competence – We work with people who bring exceptional intellectual strength. What sets them apart isn’t just what they know—it’s how they use what they know to navigate change, adapt quickly, and contribute meaningfully in fast‑changing environments.
• Resilience – We perform under pressure. Markets move fast, and so do we—but we stay grounded, focused, and calm. We embrace uncertainty, learn from setbacks, and adapt quickly without losing sight of long‑term goals.