Information & Security Engineer

NK Securities Research is a leading financial firm that leverages cutting edge technology and sophisticated algorithms to trade the financial markets. Founded in 2011, we have gained invaluable experience in the field of High Frequency Trading across different asset classes. With a focus on innovation, entrepreneurship, and collaboration, we aim to foster a dynamic work environment that reflects a startup culture.

Role Overview

We are looking for a motivated Information & Security Engineer to join our infrastructure and security team. The role involves securing internal systems, managing VDI environments, enforcing DLP controls, monitoring network traffic, maintaining centralized security logging, and supporting periodic cyber attack simulation drills.

The candidate will help ensure that sensitive data remains protected, all critical access and traffic flows are logged and auditable, and security risks are identified, tested, and remediated in a timely manner.

This role is ideal for someone with strong fundamentals in Linux, networking, scripting, and cybersecurity, and an interest in working in a high-performance financial technology environment.

Technical Skills

• Strong understanding of Linux systems (Ubuntu/CentOS/RHEL) and networking fundamentals (TCP/IP, DNS, DHCP, VLANs, firewalls).
• Familiarity with proxy servers (Squid, Nginx, or similar) and web filtering/logging tools.
• Exposure to network monitoring and packet analysis tools (Wireshark, tcpdump, Zeek, Suricata).
• Basic to intermediate scripting skills in Python, Bash, or similar languages for automation, internal API development, and NK SOC (Security Operations Center portal) portal enhancements.
• Understanding of DLP concepts, endpoint security, USB device control, and data classification.
• Working knowledge of security frameworks: MITRE ATT&CK, OWASP Top 10, and CIS Benchmarks.
• Experience with or willingness to learn SIEM platforms, log aggregation tools. (Exposure with Wazuh is also a plus).
• Familiarity with REST API development and integration (Flask, FastAPI, or Node.js).
• Exposure to VDI platforms (ThinLinc, Citrix, VMware Horizon, or similar) is a plus.

Key Responsibilities

Network Security & Proxy Management

• Manage corporate proxy servers to control, filter, and log outbound traffic.
• Restrict direct internet access on trading and sensitive systems.
• Manage firewall rules, VLANs, and network access controls.
• Ensure comprehensive packet-level logging of all network traffic using appropriate tools.
• Set up dashboards and alerts for suspicious traffic, policy violations, and security incidents.

SOC Portal & Centralized Logging

• Develop and maintain the internal SOC portal for centralized log monitoring.
• Support search, filtering, reporting, and CSV export features.
• Monitor critical systems for unauthorized access, root usage, concurrent logins, and abnormal activity.

VDI Management & Data Loss Prevention

• Manage and secure VDI environments.
• Enforce DLP controls such as disabling clipboard sharing, blocking USB/removable devices, and restricting file transfers.
• Evaluate and improve VDI configurations for better security, usability, and efficiency.

Security Operations

• Assist in vulnerability assessments, patching, penetration testing coordination, and incident response.
• Identify risks from installed services, software, and internal applications.
• Coordinate fix with infrastructure and engineering teams.

Security Frameworks & Audit Readiness

• Apply best practices from MITRE ATT&CK, OWASP Top 10, and CIS Benchmarks.
• Support phishing simulations, cyber attack drills, and incident response exercises.

Qualifications

• B.Tech. in Computer Science, Information Technology, Electronics & Communication.
• M.Tech. or relevant postgraduate certification is a plus.
• 0-5 years of relevant work experience. 

What We Offer:

• Competitive salary package
• Opportunity to work in a dynamic and collaborative environment
• Career growth and development opportunities
• Catered breakfast and lunch
• Annual international trip 
• Monthly team dinners