Security Engineering Team Lead / Senior Application Security Architect
Time Research, Singapore

What We Do

Time Research is a quantitative trading firm that utilizes a diversified portfolio of systematic and quantitative strategies across financial markets to achieve high quality, uncorrelated returns. We were founded by a team of traditional and crypto trading veterans with an average daily trading volume of over $1B USD, and pride ourselves in maintaining a low profile to focus on what we do best.

We have deep expertise in trading, technology and operations, and attribute our success to rigorous scientific research. As a technology and research-driven firm, we design and build our own cutting-edge systems: from high performance trading, large scale data analysis to compute farms.

With increasing business demand, we strive for ways to do things better and faster, optimizing our system's time to market and throughput, and improving our development approach.

We are looking for strong talent with a can-do attitude, who are passionate in using technology to solve complex problems in a fast growing and dynamic digital asset space.

This is an excellent opportunity to join a vibrant team of talented engineers building high performance systems to capitalize on the burgeoning crypto markets.

Role Overview

The incumbent will be responsible for the Information Security of the firm, including security audits covering the complete lifecycle of proprietary software, staff security awareness training and assessment, security management of IT infrastructure (including AWS production), and working with the Security Department to implement security requirements, policies, baselines and redlines for the firm to gradually achieve industry-leading security capabilities.

Responsibilities

• Lead the team to work with Ramp;D, DevOps and other teams to ensure self-developed products are adequately audited for security, and issues are fixed before going live
• Application Security: Lead security team to work with Ramp;D to ensure all applications we develop receive adequate security requirements assessment, design review, code review and security testing, as well as designing and delivering security solutions for the development team
• Data Security: Responsible for the full lifecycle security of sensitive information and data across all business lines
• Internal Security Operations: Lead the team to work with DevOps, Infrastructure and Security teams to ensure all IT infrastructure security policies, requirements are in line with the firm’s security baselines/redlines
• Establish and implement internal SDL, SOC, inspection processes
• Work with the Security Department to implement red team/blue team confrontation drills and case investigations as and when required
• Other business-related information security responsibilities

Who You Are

• Bachelor degree and 5+ years of Cybersecurity experience, with experience in security team management or overall security management for an enterprise
• Proficient in application security, with practical experience in threat modeling, SDL, and DevSecOps
• Familiar with AWS or other mainstream cloud security architecture and solutions, able to assess the potential risks of the product from an architectural level
• Familiar with at least one development language such as Go, PHP, Java, c++, or experience in security product design or development
• Experience in designing, developing and implementing security solutions for sizable internet enterprises is preferred

Why Join Us

• Competitive remuneration package and benefits
• Fast paced and result-oriented environment with a flat hierarchy
• Excellent exposure to the crypto ecosystem and the latest market insight
• Collaborative teams in an energetic and fun working environment

• Flexible and casual, but hard working and meritocratic culture where accomplishments are rewarded
• Great career development opportunities and international mobility

Time Research

ITAWS

• DevOps
• security
• DevOpsIT/
• SDLSOC

• 5
• SDL devsecops
• AWS
• (goPHPJavaC++)

Disclaimer

Time Research does not accept unsolicited resumes from professional staffing or search firms. All resumes, or other information identifying potential candidates, shared with any employee of Time Research without a standing signed supplier agreement will be deemed free to contact without restrictions, and no placement fee of any kind will be paid in the event the candidate is hired by Time Research.

Job Rewards and Benefits