ABOUT CFM

Founded in 1991, we are a global quantitative and systematic asset management firm applying a scientific approach to finance to develop alternative investment strategies that create value for our clients.
We value innovation, dedication, collaboration, and the ability to make an impact. Together, we create a stimulating environment for talented and passionate experts in research, technology, and business to explore new ideas and challenge existing assumptions.

YOUR ROLE 

Are you passionate about application security and ready to serve as a subject matter expert in AI security? In this role, you’ll be instrumental in protecting our low-latency processing systems and trading platforms across diverse environments. Reporting directly to the Director of Application Security, you will work collaboratively with development, infrastructure, and operations teams to embed security into every phase of our process and in the company culture. 

KEY RESPONSIBILITIES  

• Serve as the internal point of reference and Subject Matter Expert on AI security and cloud applications security. 

• Design, implement, and maintain the essential tools to secure our AI and agentic systems with robust security controls including sandboxes, guardrails, compliance checks, and vulnerability management. 

• Support our development teams in addressing identified findings in our cloud infrastructure (including infrastructure as code), ensuring compliance with secure cloud practices to align with industry standards, and promote a culture of ongoing security enhancement. 

• Participate in design reviews, threat modeling, and architecture assessments to proactively identify and mitigate security risks in new and existing solutions. 

• Establish best practices and policies regarding AI security and communicate them across the company to foster its security culture and to empower our teams to develop cutting hedge AI solutions. 

• Work with our Core and Architecture team to deploy solutions for managing agents’ identities, agent authentication, and access control (role- and attribute-based), both on premises and in cloud environments. 

• Develop, monitor, and report indicators to track security performance and drive continuous improvement. 

YOUR SKILLS: 

• Proficiency in LLM architecture, embeddings, vector databases, RAG and inference. Hands-on experience with securing MCP servers, skills and agentic coding tools (e.g. Claude Code). 

• Expert in the corresponding OWASP Top 10 for LLMs and OWASP Top 10 for Agentic Applications. 

• Exposure to MLOps pipelines and frameworks for deploying machine learning models. Experience with cloud-based AI/ML services – for example, AWS SageMaker, AWS AI Services (Bedrock, Rekognition, Lex, etc.), Google Vertex AI, or Azure Machine Learning – and knowledge of how to secure data and models on these platforms. 

• Bachelor’s degree (or equivalent practical experience) in Computer Science, Information Security, or a related field. 

• A minimum of 4 years of hands-on experience in application security, with proven expertise securing modern architectures—including cloud environments, containerized applications, serverless platforms, and APIs. 

• Ability to design, configure, implement, and maintain these tools as part of production CI/CD pipelines, ensuring accurate vulnerability detection, low noise, and minimal impact on deployment speed and stability. 

• Proficiency in Linux environments, networking protocols (TCP/IP, UDP, HTTP, HTTPS, SSH). 

• Expert on authentication and authorization protocols including but not limited to SAML, OAuth2, OpenID Connect. 

• Strong coding skills in at least one programming language with the ability to read, analyze, and communicate code vulnerabilities to both technical and non-technical audiences. 

• Clear understanding of cloud architecture fundamentals like load balancers, gateways, compute, storage, serverless, etc. Familiarity with containerization (Docker) and orchestration (Kubernetes, AWS EKS/ECS) security concerns. Knowledge of image vulnerability scanning, Kubernetes network policies, and secrets management in containerized environments is a plus. 

• Excellent written and verbal communication skills, with proven ability to transform complex technical concepts into clear business and security recommendations. 

 
Preferred Qualifications: 

• Expertise in cloud security with either AWS, GCP, or Azure, and extensive experience ensuring a cohesive security posture across all environments. 

• Strong background in implementing and managing Infrastructure as Code (IaC) and automation tools (e.g., Terraform, Ansible, CloudFormation). 

• A passion for staying informed about the latest AI security research, tools, and adversarial tactics, techniques and procedures — and applying that knowledge to improve enterprise security. 

• Experience with threat modeling or conducting comprehensive security audits is a plus. 

EQUAL OPPORTUNITIES STATEMENT

We are continuously striving to be an equal opportunity employer and we prohibit any discrimination based on sex, disability, origin, sexual orientation, gender identity, age, race, or religion. We believe that our diversity, breadth of experience, and multiple points of view are among the leading factors in our success.
CFM is a signatory of the Women Empowerment Principles.

FOLLOW US

Follow us on Twitter or LinkedIn or visit our website to find out more about CFM.