Description

Fluent Trade Technologies is a global Fintech leader, providing high-performance technology to the world’s largest banks and brokers. We specialize in ultra-low latency solutions and market data, operating R&D centers in Jerusalem alongside global development and sales hubs across Europe, Asia and the US.

 We are looking for a Senior IT/Security Operations Engineer to own and advance our security operations capability. This is a senior individual contributor role with a broad scope spanning SIEM/SOC operations, threat detection, SOAR automation, and infrastructure hardening. You will be a key technical anchor, ensuring our trading infrastructure is continuously monitored, hardened, and resilient.

Key Responsibilities

• Own and administer the SIEM platform, including log onboarding, parser development, and correlation rule tuning.
• Monitor security events in real-time, leading triage and response for escalated incidents.
• Design, build, and maintain SOAR playbooks and automation scripts (Python, PowerShell, or bash) to reduce MTTR.
• Operate and tune vulnerability scanning tools across servers, endpoints, and network infrastructure.
• Define and enforce hardening baselines for Linux and Windows using frameworks like CIS Benchmarks.
• Administer the organization’s EDR/XDR platform, managing policies, exclusions, and response actions.
• Lead periodic user access reviews and audit privileged access (PAM) usage.
• Integrate security controls and checks into CI/CD pipelines (Jenkins, GitLab CI, GitHub Actions).

Requirements

• 6+ years of experience in IT security, security operations, or a combined SecOps/DevSecOps role.
• Proven experience operating SIEM platforms and building SOAR playbooks in production environments.
• Deep proficiency in Linux and Windows hardening.
• Strong scripting ability in Python, PowerShell, or bash for operational automation.
• Expertise with vulnerability management tools (Tenable, Qualys, Rapid7) and EDR platforms.
• Solid understanding of IAM concepts, RBAC, and CI/CD security integration.
• Ability to act as a senior technical communicator and stay calm under pressure during incidents.

Preferred Qualifications

• Experience in fintech, capital markets, or trading platform environments (strong advantage).
• Familiarity with financial industry frameworks (PCI-DSS, DORA, FFIEC).
• Cloud security operations experience (AWS, Azure, or GCP).
• Certifications: CISSP, CISM, GCIA, GCIH, or Splunk Certified Power User.
• Experience mentoring junior security engineers or analysts