JobGrid.eu
hermeneutic Investments

Cybersecurity Engineer - EU/US Timezones

🇺🇸 Remote, US Remote Temps plein Publié Avr 24, 2026
Postuler
LieuRemote, US
Mode de travailRemote
ContratTemps plein
Publié24 avril 2026
Dernière vérification7 mai 2026

Company Overview

hermeneutic Investments is a best-in-class proprietary trading firm and hedge fund. It deploys research-driven discretionary and systematic strategies as well as makes strategic long-term investments. The partners' decade-long history of success in trading and business building and a firm-wide cultural emphasis on alpha generation, open debate, relentless iteration, and teamwork are key to the firm's continued expansion in a challenging market environment that has hamstrung competitors. A hard-wired emphasis on risk management and opportunistic market participation ensure that hermeneutic Investments will continue its growth trajectory in the coming decades.

Job Overview

We’re looking for a Junior–Mid Cybersecurity Engineer who is hands‑on with security operations and excited to improve our defenses across cloud, endpoints, identity, and collaboration tooling. You’ll help run the daily security program, tune and maintain controls, investigate alerts, and contribute to projects that raise our overall security posture.

Security Engineering manages our deployed security solutions and controls, implements new security technologies, and evaluates emerging solutions for potential adoption. This role handles all day‑to‑day security operations and partners closely with IT, SRE, and Product Engineering to keep our environments safe and compliant.

Responsibilities

Operations & Monitoring

  • Own day‑to‑day security operations: triage alerts, investigate events, and drive incidents through containment, eradication, and post‑incident review.
  • Maintain detection rules, playbooks, and runbooks; continually reduce false positives and MTTR.
  • Troubleshoot users on issues with security tooling.

Tools & Controls

  • Review and harden AWS security services (e.g., IAM/SCPs, GuardDuty, Security Hub, CloudTrail/Config, KMS, WAF).
  • Operate MDM for device compliance, disk encryption, patching, and baseline configurations.
  • Operate AV/EDR and firewall policies; support enterprise browser security policies and extensions.
  • Harden Cloud services and partners (DLP, context‑aware access, OAuth app controls, group/SSO hygiene, 2SV/passkeys).
  • Conduct POCs and evaluation on security tools for adoption.
  • Support IT operations when needed.

Engineering & Enablement

  • Implement new security technologies and integrations; document deployments and handoffs.
  • Create security automations for tooling.

Risk & Posture

  • Support asset/inventory accuracy, least‑privilege access reviews, and change control.
  • Assist with security reviews, vendor risk, and audit evidence for SOC 2/ISO 27001‑style controls.

Avant de partir

Laissez votre e-mail pour suivre cette offre et recevoir des alertes pertinentes. Vous pouvez aussi continuer sans le partager.