Senior Infrastructure Security Engineer chez Ig

So, who are we? 

The tasty family of companies is committed to empowering individual investors and traders by providing educational media, intuitive and powerful trading software, high-speed order execution, competitive pricing, and innovative financial products. Our engineers have access to a wide range of tools and technologies, offering the opportunity to tackle diverse problems while honing expertise in specific areas. We are looking for self-motivated, engineering-driven professionals who are pragmatic, enjoy working in a fast-paced environment, and take pride in creating and operating large-scale, highly available, and high-performance systems. With a lean team and a management philosophy that values autonomy, you’ll have the freedom to shape impactful solutions. 

We work in cross-functional teams and are laser-focused on increasing the number of active clients we serve to drive sustainable growth. 

Your Team 

The tastytrade infrastructure team is responsible for maintaining the stability, security and performance of our back-end systems, which directly impacts the experience of our customer-facing applications. Reporting directly to the Chicago based infrastructure management, you will be part of the team that ensures tastytrade's infrastructure is secure, reliable and well positioned to support the business as it continues to scale.   

Your Role in the Team's Success 

As a Senior Infrastructure Security Engineer, you'll be responsible for supporting, maintaining, automating, and improving our IT Security platforms. You will perform a variety of technical tasks within the Infrastructure Engineering team, ensuring the smooth and effective operation of a growing set of security products and solutions. Beyond maintenance, you will be the go-to person for security tooling, offering guidance and consultation to developers and engineers to ensure a best practice, "security-by-design" culture within the business. 

What You'll Do 

Security Integration & Migration 

• Lead the transition from Rapid7 to Qualys for comprehensive vulnerability management 

• Collaborate with infrastructure teams to establish SLAs for patching and remediation processes 

• Integrate tastytrade’s systems with Google Chronicle, fine-tuning alerts to meet tastytrade’s infrastructure and engineering team requirements 

Continuous Improvement 

• Perform necessary upgrades and troubleshoot issues across all security tools, with focus on HashiCorp Vault platforms, plus AWS native security tooling 

• Maintain and enhance scripts and utilities within GitHub that support our security operations 

• Drive improved integration between security tools to enable new capabilities and solve existing challenges 

• Adapt security tools to evolving requirements, keeping pace with tastytrade's technology roadmap and industry best practices 

Who you are: 

You're passionate about the client experience, and the rapidly evolving world of fintech.  You actively evaluate existing security approaches, identifying opportunities to modernize legacy processes and eliminate technical debt 

You’re comfortable driving cultural change, looking to challenge traditional security mindsets that create friction, advocating for security solutions that enhance rather than hinder developer productivity.  Your mindset is to stay ahead of industry trends, piloting new security technologies and methodologies that can provide competitive advantages. You're naturally able to bridge silos, break down barriers between security, infrastructure, and development teams by demonstrating how integrated approaches solve complex problems more effectively.  

What You'll Need for This Role 

This is a role with significant independence. Candidates are expected to satisfy most of the listed technical requirements while possessing the ability to work both independently and as part of a team. Successful candidates will demonstrate an independent and self-motivated approach to continuing the development of their skills and knowledge. 

Technical Requirements: 

• 5+ years’ experience in technology or security roles in an enterprise environment 

• Public Cloud: AWS experience preferred, with knowledge of security services and best practices 

• Infrastructure as Code: Proficiency in Terraform for automated infrastructure deployment 

• Scripting & Programming: Strong skills in Python, Go, and/or Bash for automation and tooling 

• Networking & DNS: Solid understanding of network security principles and DNS management 

• Version Control: Experience with GitHub workflows and CI/CD pipelines 

• Operating Systems: Linux system administration and security hardening 

• Security Foundations: Understanding of core security concepts, threat modelling, and security frameworks 

Preferred Experience: 

• Experience with SIEM/SOAR platforms (Google Chronicle preferred) 

• Vulnerability management platform experience (Qualys, Rapid7) 

• Advanced website/app protection (Web application firewall, F5 App Protect)  

• Secrets management (HashiCorp Vault) 

• Containers (Nomad/Kubernetes) & Virtualization 

• Terraform & Scripting languages (Python/Go/Bash) 

• Cloud security posture management tools (Wiz) 

• Financial services or fintech industry experience 

The perks

Your growth fuels our success! Thrive with tailored development programs, mentoring opportunities with leaders, and clear career progression. Expand your network through committees, sports and social clubs. Enjoy extra time off for volunteering and community work.

• Matched giving for your fundraising activity

• Flexible working hours and work-from-home opportunities

• Performance-related bonuses

• Insurance and medical plans

• Career-focused technical and leadership training in-class and online, incl. unlimited access to LinkedIn Learning platform

• Contribution to gym memberships and more

• Free Lunch/Snacks/Fruits

• A day off on your birthday

• Two days’ volunteering leave per year.

Learn more about the Perks here!