Security Engineering Manager

Our client is hiring an Engineering Manager to lead a newly formed security engineering team focused on safeguarding both traditional finance and digital asset platforms. Reporting directly to the CTO, this role is ideal for a seasoned security professional ready to define and execute a comprehensive security vision. The successful candidate will be responsible for shaping the technical roadmap and mentoring a team of engineers who will design, build, and automate cutting-edge security controls across cloud infrastructure, application layers, and detection systems.

The ideal candidate will bring over a decade of experience in security engineering, including at least three years in a leadership role within fintech, exchanges, or large-scale web environments. A strong background in building automated security pipelines using Infrastructure as Code (IaC), along with expertise in scanning, secret detection, and exploit simulation, is essential. Proficiency in coding, coupled with a deep understanding of micro-services and distributed systems, will be key to driving innovation and resilience in the company\’s security posture.

Responsibilities:

• Develop a multi-year security engineering strategy that aligns with the firm\’s risk tolerance and regulatory requirements.
• Drive and prioritise high-impact initiatives, including cloud and infrastructure hardening, application security for proprietary systems, advanced threat detection and response, and safeguarding of crypto assets.
• Build, mentor, and retain a top-tier team of security engineers, fostering a culture of excellence and innovation.
• Lead the design and implementation of secure-by-default frameworks across AWS, Kubernetes, CI/CD pipelines, and crypto custody solutions.
• Promote automation in vulnerability discovery, assessment, and contextualization-minimizing manual effort through Python-based tooling and Infrastructure as Code (IaC) scanning.
• Serve as the key point of contact between Security, Engineering, Operations, and IT, ensuring alignment and collaboration across functions.

Requirements:

• Over 10 years of experience in security engineering, including 3+ years leading high-performing teams within fintech, exchanges, or large-scale web environments.
• Deep specialisation in one or more areas such as cloud and infrastructure security, hardening, application security, detection engineering, or crypto asset protection.
• Demonstrated success in designing and deploying automated security pipelines, including Infrastructure as Code (IaC) scanning, secret detection, and exploit simulation frameworks.
• Proficient in modern programming languages such as Python, Go, or Rust, with strong familiarity with micro services and distributed system architectures.
• Experienced in conducting threat modelling for high-value, low-latency trading platforms or digital asset custody systems.