Security Engineer

We are seeking a motivated, hands-on Security Engineer to join our security team. In this role, you will help protect, monitor, and continuously improve the security of our global systems — including cloud (AWS and M365) and on-premises infrastructure. You’ll play a central part in risk mitigation, incident response, automation of security operations, and embedding security best practices across our organization.

WHAT YOU'LL DO

As a Security Engineer at Optiver, you'll be responsible for monitoring, protecting, and continuously improving the security of our global systems and infrastructure. At Optiver, this means proactive threat prevention, swift identification of security risks, and rapid response to incidents to ensure our systems remain secure under all circumstances. An engineering mindset, attention to detail, and a preference for pragmatic solutions are essential to keeping our systems operating.

In practice, this means you will work on a range of activities in collaboration with the global security team on activities such as:

Security Operations & Monitoring

• Monitor daily security operations, identify threats, investigate alerts, and respond to incidents across cloud and on-prem environments.

• Maintain and tune security tools across AWS, Microsoft 365, endpoints, and network infrastructure.

Cloud & Identity Security

• Strengthen Microsoft 365 and Entra ID security through Conditional Access, MFA, PIM, Defender for Endpoint/Identity/O365, and tenant configuration hardening.

• Implement and support data protection capabilities, including Microsoft Purview, sensitivity labels, DLP, and insider risk policies.

Automation & Engineering

• Build and maintain security automation using Python and PowerShell, with a strong focus on reducing manual processes and improving detection and response.

• Integrate systems using APIs (Graph API, REST, etc) to enhance security workflows.

• Work with AI and our AI engineering teams to ensure the security of the environment

Risk Assessment & Security Controls

• Perform vulnerability assessments, review system configurations, and develop practical mitigation strategies.

• Conduct security reviews of systems, cloud workloads, and new technologies.

• Ensuring and assuring our security controls are effective and working as intended

Incident Response

• Lead or contribute to incident response activities including investigation, containment, communication, and remediation.

• Analyze logs, IOCs, and behavior patterns using SIEM tools and threat intelligence.

Collaboration & Enablement

• Work closely with engineering, technology, and business teams to embed security best practices.

• Provide guidance on secure architecture, access controls, and identity management.

• Support user education and uplift security behaviors across the business.

Who You Are

You are a hands-on security engineer with strong technical fundamentals and a passion for building secure, scalable systems. You may come from a background in Security Engineering, Security Operations, Cloud Security, Identity & Access Management, DevSecOps, or a related field.

You likely bring experience in several of the following areas:

• Securing and supporting cloud environments, particularly AWS, including services such as IAM, GuardDuty, CloudTrail, Security Hub, AWS Config, and KMS.
• Working with Microsoft security technologies including Entra ID, Conditional Access, Multi-Factor Authentication (MFA), Privileged Identity Management (PIM), Microsoft Defender, and Secure Score.
• Using security tools such as EDR, SIEM, vulnerability management, SOAR, CASB, or related technologies.
• Investigating security events, responding to incidents, and managing security risks across cloud and on-premises environments.
• Managing identity and access controls, including RBAC, PAM, SSO, and federation technologies such as SAML, OAuth, and OIDC.
• Supporting and securing Windows and Linux environments.
• Applying networking fundamentals including TCP/IP, DNS, VPNs, proxies, and firewalls to secure enterprise systems.
• Building automation and tooling using Python and/or PowerShell.
• Integrating systems through APIs and working with version control systems such as Git.
• Implementing or supporting data protection technologies such as Microsoft Purview, data loss prevention (DLP), classification, and information protection solutions.

Beyond your technical experience, you:

• Approach security challenges with an engineering mindset and prefer pragmatic, effective solutions to unnecessary complexity.
• Look for opportunities to automate repetitive work through scripting, tooling, and emerging technologies, including AI-enabled security workflows.
• Have hands-on experience in security engineering, security operations, or DevSecOps, with a track record of monitoring, incident response, and risk reduction.
• Stay curious about evolving threats, cloud technologies, detection techniques, and emerging security trends.
• Communicate effectively across technical and non-technical teams and can clearly articulate security concepts to a variety of audiences.
• Are comfortable collaborating with engineers, infrastructure teams, and business stakeholders, and constructively challenging assumptions when needed.
• Take ownership of problems from investigation through resolution and enjoy working in a fast-paced, highly collaborative environment.

We recognize that great candidates may not meet every qualification listed above. If you're excited about the role and believe you can contribute, we encourage you to apply.

WHO WE ARE

Optiver is a global market maker founded in Amsterdam, with offices in London, Chicago, Austin, New York, Sydney, Shanghai, Hong Kong, Singapore, Taipei and Mumbai. Established in 1986, today we are a leading liquidity provider, with close to 2,000 employees in offices around the world, united in our commitment to improve the market through competitive pricing, execution and risk management. By providing liquidity on multiple exchanges across the world in various financial instruments we participate in the safeguarding of healthy and efficient markets. We provide liquidity to financial markets using our own capital, at our own risk, trading a wide range of products: listed derivatives, cash equities, ETFs, bonds and foreign currencies.