Information Security Operations Engineer

As a member of the Tower Research Capital team, you will be part of a leading quantitative trading firm with a strong reputation for innovation and discovering unique market opportunities. You will join a global organization that empowers portfolio managers to build their teams and strategies independently while benefiting from economies of scale. Engineers at Tower thrive in developing electronic trading infrastructure at a world-class level, tackling challenging problems in low-latency programming, FPGA technology, hardware acceleration, and machine learning. The continuous investment in top engineering talent and technology ensures that the platform remains unmatched in functionality, scalability, and performance. Your role at Tower will be crucial to the company's success as you contribute to building and maintaining the platform that drives all operations. By combining market access, data, compute, research infrastructure, risk management, compliance, and business services, you will enable the trading and engineering teams to excel. You will experience a stimulating, results-oriented environment at Tower where highly intelligent and motivated colleagues inspire each other to reach their greatest potential. **Key Responsibilities:** - Identity & Access Management (IAM): User Lifecycle Management, maintaining roles (RBAC), entitlements, and policy violations in SailPoint IIQ, Okta (SSO, MFA, SCIM), and Keeper. Troubleshooting authentication/authorization failures and managing quarterly access certifications. - Secrets & Key Management: Operating and tuning HashiCorp Vault, provision accounts, manage PKI/TTL policies, champion best practices. - Secure Endpoint Management: Operating and Managing EDR / NDR to ensure the tools are configured as per industry best practices. - Secure Network Access: Administering Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) policies, SSL-inspection exceptions, and environmental health. - Ticket & Workflow Governance: Monitoring inbound ticket queues, review access and change requests, and approve or decline workflows in line with internal security policies. - Third-Party Risk Coordination: Facilitating vendor-led third-party risk assessments, acting as the primary liaison between the external assessment partner and internal system owners, gathering evidence, tracking remediation items, and ensuring assessments are completed on schedule. - Client-Facing Communication: Owning ticket queues, status calls, and post-mortems; ensuring SLAs are met and stakeholders remain informed. **Qualifications:** - 3+ years in security operations, IT ops, or IAM engineering. - Hands-on admin experience with at least three of the following: SailPoint IIQ, Okta, HashiCorp Vault, Zscaler, Keeper, Duo, AWS IAM, Azure AD. - Working knowledge of authentication protocols (SAML, OAuth 2.0/OIDC, Kerberos, LDAP) and network fundamentals (TCP/IP, TLS, DNS). - Familiarity with ITIL-based incident, change, and problem-management processes. - Excellent written and verbal communication skills; able to run client calls and produce clear after-action reports.,