Description

Our client, a leading global hedge fund is seeking an experienced Information Security professional to take a senior, high‑impact role focused on strengthening security across network, cloud, data, and systems environments. This is great opportunity for someone to join a growing team with a technology first mindset. This role serves as a key escalation point for complex security challenges and plays a central part in shaping the organisation's security roadmap.

You will provide expert guidance, lead threat modelling for complex systems, audit critical platforms, and build automated security validation capabilities. This position is ideal for someone who is proactive, technically strong, and eager to influence enterprise‑wide security strategy.

Key Responsibilities

• Enhance security across core domains including network, system, email, cloud, and data security.
• Act as a security advisor for major IT projects, ensuring risks are identified, managed, and mitigated.
• Manage and optimise a broad suite of security tools to ensure effective deployment and ongoing operation.
• Lead the design and implementation of security solutions and architectures protecting critical assets.
• Provide second‑line support for Security Operations, acting as an escalation point for complex issues.
• Conduct threat modelling and risk assessments to identify vulnerabilities and define mitigation strategies.
• Oversee the relationship with the Managed Detection & Response (MDR) provider to ensure continuous improvement.
• Deliver key initiatives on the security roadmap, aligned to business objectives and evolving threats.
• Collaborate with cross-functional teams to promote security awareness and integrate best practices across the business.

Required Qualifications

• 10 years' experience in information security roles such as security engineering, architecture, operations, or application security.
• Hands-on experience with threat modelling, penetration testing, and automated security validation.
• Strong understanding of cloud, network, and systems security principles.
• Scripting experience in at least one language; Python or PowerShell preferred.
• Familiarity with security technologies including EDR, DLP, vulnerability scanners, firewalls, and email gateways.
• Strong analytical and problem-solving skills, capable of addressing complex issues and designing practical solutions.
• Excellent communication skills with the ability to partner effectively with both technical and non-technical teams.
• Degree in Computer Science, Engineering, or a related STEM discipline.

Nice to Have

• Deep knowledge of risk assessment methodologies.
• Exposure to security best practices across Azure, AWS, and GCP.
• Ability to analyse software for security risks, including code review, SAST/DAST, and identifying vulnerabilities in application design.
• Familiarity with regulatory frameworks (e.g., SEC Cybersecurity rules, MAS TRM Guidelines, NFA Cybersecurity Guidance, GDPR).
• Relevant security certifications.