Technology - Security Engineer

Security Engineer - Algo Quant Asset Management

Location: Fully Remote (Preference for Europe or Dubai)

Reporting to: Head of Tech Ops

At Algo Quant, we're building the future of digital asset management; grounded in rigorous research, world-class technology and a relentless focus on performance.

We began as a proprietary trading firm, developing sophisticated algorithmic strategies and operating in some of the most complex and fast-moving markets. That DNA remains at our core, but today we are evolving into a fully remote, globally distributed Investment Management business. This transformation reflects a broader ambition: to scale our edge, deliver institutional-grade results, and set new standards for the industry.

Our quantitative environment is built to empower innovation, combining vast data capabilities, disciplined model development, and highly automated execution. Risk is embedded in every layer of our thinking, with robust measurement, control, and scenario analysis integrated into our systems and decision-making. Technology is not just a tool for us, it’s a core competency and a competitive advantage.

We are seeking a Security Engineer to strengthen Algo Quant’s infrastructure and lead the development of a scalable, robust security foundation as the company transitions from startup to mature enterprise.

This is a hands‑on, high‑impact role focused on securing cloud‑native and hybrid environments. The successful candidate will design and implement systems that are secure by design, automated where possible, and aligned with Zero Trust and identity‑driven security principles. Collaboration across engineering, operations, and compliance will be central to ensuring security is deeply embedded in our technology and culture.

• Architect, deploy, and maintain secure network and system infrastructure across AWS, corporate, and hybrid environments, data centers.
• Implement and manage Zero Trust Architecture (ZTA) frameworks, leveraging tools such as Cato for secure access, segmentation, and traffic control.
• Lead configuration and hardening of Microsoft Entra  (Azure AD), SSO, and Intune to establish robust identity, device, and access management policies.

• Oversee and continuously enhance system, application, and network security controls, including intrusion detection, endpoint protection, and vulnerability management.
• Automate security monitoring, compliance checks, and remediation workflows
• Integrate security controls into CI/CD and infrastructure‑as‑code pipelines to ensure consistent enforcement and auditability.
• Conduct regular risk assessments, security audits, and incident response exercises.
• Develop and enforce security baselines, policies, and monitoring for both cloud and on‑prem environments.
• Collaborate with cross‑functional teams to ensure compliance with internal and regulatory standards.

• Deep expertise in network, system, identity, and datacenter security, with hands‑on experience securing enterprise‑grade or high‑scale hybrid environments.
• Strong practical experience with Microsoft Entra  (Azure AD), including SSO, Conditional Access, MFA, and identity lifecycle management, as well as Microsoft Intune for endpoint management.
• Proven experience designing and implementing Zero Trust Architecture (ZTA), including work with Cato Networks or comparable SASE / secure access frameworks.
• Strong background in AWS security, including IAM roles and policies, least‑privilege access models, VPC design, network segmentation, and cloud hardening.
• Experience securing on‑prem and colocation datacenter environments, including network segmentation, firewalling, secure routing, physical and logical access controls, and secure management of servers, hypervisors, and core infrastructure services.
• Solid administration experience in Windows and Linux environments, including OS hardening, patch management, secure baseline configurations, intrusion detection, vulnerability scanning, and remediation.
• Working knowledge of core security engineering tools, including…