Job Position

Vulnerability Management

Compensation
$150,000 - $200,000
Industry
Electronic Trading, Market Infrastructure
Location
New York
Job Type
Remote
Description

Senior Vulnerability Engineer

Location: Flexible / Hybrid

Employment Type: Full-time

Number of Openings: 1

Salary: Competitive + Bonus

Maximum Experience Required: 10 years

Job Responsibilities

• Own and manage the end-to-end vulnerability management lifecycle across cloud, infrastructure, and engineering environments.

• Triage security findings, assess risk exposure, and prioritise remediation efforts based on technical and business impact.

• Drive remediation tracking, SLA ownership, and cross-functional accountability across engineering and infrastructure teams.

• Partner closely with SRE, DevOps, cloud engineering, infrastructure, and security teams to improve operational security maturity.

• Improve vulnerability management workflows, reporting structures, and operational processes at scale.

• Provide technical guidance on infrastructure security risks, remediation approaches, and secure operational practices.

• Support scalable security initiatives across modern cloud and containerised environments.

• Translate technical security findings into clear business and engineering actions for both technical and non-technical stakeholders.

• Assist with infrastructure hardening, monitoring improvements, and operational resilience initiatives.

• Contribute towards building long-term security and operational best practices across the organisation.

Essential Qualifications

• Strong hands-on experience managing vulnerability management programmes in modern infrastructure environments.

• Deep understanding of cloud infrastructure, DevOps workflows, SRE operating environments, and infrastructure architecture principles.

• Practical experience with Linux systems, Docker, Kubernetes, and containerised infrastructure environments.

• Strong understanding of TLS / SSL, networking fundamentals, secure connectivity, and infrastructure security concepts.

• Hands-on experience with enterprise-grade vulnerability and security tooling such as: Wiz

• Tenable

• Qualys

• Rapid7

• Snyk

• Prisma Cloud

• Microsoft Defender

• Equivalent technologies

• Ability to communicate technical concepts, remediation priorities, and risk rationale clearly across multiple stakeholder groups.

• Strong troubleshooting and root-cause analysis capability across infrastructure, networking, and distributed systems environments.

• Ability to operate autonomously within fast-moving engineering organisations.

Desired Experience

• Experience scripting or automating operational processes using Python, Bash, or similar languages.

• Exposure to blockchain, digital asset, or crypto infrastructure environments.

• Experience within regulated financial services or institutional-grade infrastructure environments.

• Understanding of Infrastructure-as-Code tooling and modern cloud deployment methodologies.

• Security certifications or equivalent practical security engineering experience.

• Experience working within high-growth technology businesses.

Salary & Benefits

• Competitive base salary and discretionary bonus structure.

• Flexible paid time off and paid holidays.

• Health and protective benefits for employees and dependents.

• Retirement contribution and parental leave support.

• Coaching, wellbeing, and professional development support.

• Exposure to cutting-edge digital asset and financial infrastructure technology.

• Opportunity to work alongside a highly technical and entrepreneurial team.

• Flexible hybrid working environment.

Application Process

Qualified candidates are invited to submit their CV directly for a confidential discussion regarding the opportunity.

This search is conducted by Spearpoint Search: The Search Firm For Capital Markets.

We are NOT incentivised to place. We are incentivised to be right. That means we tell clients when compensation is misaligned with the talent they need, we tell candidates when a role isn't what they think it is, AND we walk away from searches that don't have the conditions to succeed. This costs us fees. It is also why people call us back.

Apply now
Description

Heading 1

Heading 2

Heading 3

Heading 4

Heading 5
Heading 6

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur.

Block quote

Ordered list

  1. Item 1
  2. Item 2
  3. Item 3

Unordered list

  • Item A
  • Item B
  • Item C

Text link

Bold text

Emphasis

Superscript

Subscript

Apply now