We tackle the most complex problems in quantitative finance, by bringing scientific clarity to financial complexity.
From our London HQ, we unite world-class researchers and engineers in an environment that values deep exploration and methodical execution - because the best ideas take time to evolve. Together we're building a world-class platform to amplify our teams' most powerful ideas.
As part of our engineering team, you'll shape the platforms and tools that drive high-impact research - designing systems that scale, accelerate discovery and support innovation across the firm.
The role
Engineering underpins our continued growth and success, and we are committed to recruiting and developing the world's best engineers.
The Low Latency Engineering Group at G-Research is responsible for providing and evolving our low-latency platform. As a Security Engineer in Core Colo Engineering, you will be responsible for the security architecture and controls that underpin a globally distributed, low latency system.
Our application platform consists of high-performance Linux servers, Kubernetes, and an ecosystem of services to manage application deployments written mostly in C#.
We're on a multi-year mission to modernise our Colo platform, and this includes rethinking our security approach – simplifying our estate, improving visibility and resilience, and embedding security earlier in our software lifecycle.
The ideal candidate will have worked in a small, resource-constrained team and effectively leveraged modern tooling to improve both security and developer experience.
Key responsibilities of the role include:
* Designing, implementing, and improving security architecture across our application platform
* Collaborating with architecture, platform and application teams to identify risks and integrate security best practices
* Developing tools and controls that improve the security posture of our systems without adding friction
* Keeping a business value-oriented mindset, understanding how your work adds value to the business and making that central to your decision making
Who are we looking for?
The ideal candidate will have the following skills and experience:
* A strong foundation in software engineering, including extensive experience in a high-level programming language such as C#, Java, Go, Rust, or C++
* A proven track record in designing and implementing secure distributed systems using modern cloud-native technologies, especially AWS and Kubernetes
* Deep understanding of security principles across application, network, and infrastructure security, including secure deployments, container hardening, least privilege, and secure defaults, to enforce rigorous controls
* Skilled in embedding security into CI/CD pipelines through Infrastructure-as-Code, such as Terraform and Ansible, ensuring consistent and automated security deployments across diverse systems
* Hands-on experience with Zero Trust architectures, including the integration of SPIFFE standards and certificate/token-based authentication using tools such as Teleport, SPIRE or Consul
* Demonstrated expertise in designing and deploying IAM/PAM solutions that leverage SSH CA, using tools like Teleport to implement secure, automated access controls
* Proven experience in deploying secure Kubernetes clusters, including worker node attestation, using TPM or secure boot, and container signing, while integrating with network controls, such as firewalls and ACLs
* Experience working with Security Operations Centres to deploy IDS/IPS and NDR systems, ensuring real-time monitoring and threat detection
* Ability to implement comprehensive security controls, from proactive threat modelling (using frameworks like STRIDE or MITRE ATT&CK) to low-overhead in-kernel monitoring, using tools like eBPF, to balance performance, risk, and business objectives
* Strong understanding of fundamental algorithms and data structures, which underpins efficient and secure software design
Why should you apply?
* Highly competitive compensation plus annual discretionary bonus
* Lunch provided (via
Just Eat for Business
) and dedicated barista bar
* 35 days' annual leave
* 9% company pension contributions
* Informal dress code and excellent work/life balance
* Comprehensive healthcare and life assurance
* Cycle-to-work scheme
* Monthly company events