• Develop and work with supporting secure AI and LLM usage/integration both in products and within Security; • Develop building blocks to accept payments and move funds; • Stripes Core Products including Connect, Subscriptions, Checkout, RADAR, and Issuing; • Build/Enhance automated threat modeling tooling; • Identify and help reduce security debt across our product portfolio; • Work closely with product engineering teams to design solutions that are secure by default; • Tailor answers to security questions from non-engineers and engineers; • Lead threat modeling discussions and help teams strike the right balance between security, user experience and product advancement; • Scale security effort by empowering engineering teams with automation, security guidance, tooling, patterns and training; • Drive high impact, cross-team security initiatives; • Mentor teammates and others across the organization.

Role Description Hudson River Trading (HRT) is seeking an experienced Security Engineer to join our growing Enterprise Security team. This team is responsible for securing the systems and tools HRT employees rely on every day, including managing: - AI security - Cloud Security Posture Management (CSPM) - Identity and Access Management (IAM) - Public Key Infrastructure (PKI) - Endpoint Security - Vulnerability Management - Protecting HRT’s infrastructure across on-prem and cloud environments In this role, you will lead a small team of security engineers focused on enabling employees to work safely and productively from any device, anywhere. The ideal candidate is a hands-on, technical leader and security generalist with broad experience developing practical security solutions that enhance both protection and user experience, and the ability to quickly adapt in a fast-paced environment. Responsibilities include: - Managing device posture and machine identity across thousands of endpoints - Identifying vulnerabilities in servers, containers, and serverless workloads - Securing AI agents with guardrails and containerization - Advising teams on securing productivity applications Qualifications - 7+ years of experience in security engineering - 2+ years of experience leading a technical team - Experience hardening Linux environments at scale using configuration management and infrastructure-as-code tooling - Experience in cloud security posture management on GCP, Azure, and/or AWS - Familiarity with emerging generative AI security tooling and best practices (guardrails, agents, sandboxing, MCP security, etc.) - Familiarity with endpoint security technologies on macOS and Windows - Familiarity with PKI workflows: certificate templates, issuance, renewal and revocation - Proficiency in Python is required - Strong ability to make principled decisions, balancing workforce productivity with security needs - Curious, agile, eager to learn, and capable of implementing novel solutions, even when confronted with complexity or uncertainty - Experience working with partners throughout the business to achieve company-wide impact Requirements - The estimated base salary range for this position is 200,000 to 300,000 USD per year (or local equivalent). - The base pay offered may vary depending on multiple individualized factors, including location, job-related knowledge, skills, and experience. - This role will also be eligible for discretionary performance-based bonuses and a competitive benefits package. Culture Hudson River Trading (HRT) brings a scientific approach to trading financial products. We have built one of the world's most sophisticated computing environments for research and development. Our researchers are at the forefront of innovation in the world of algorithmic trading. At HRT we welcome a variety of expertise: mathematics and computer science, physics and engineering, media and tech. We’re a community of self-starters who are motivated by the excitement of being at the cutting edge of automation in every part of our organization—from trading, to business operations, to recruiting and beyond. We value openness and transparency, and celebrate great ideas from HRT veterans and new hires alike. At HRT we’re friends and colleagues – whether we are sharing a meal, playing the latest board game, or writing elegant code. We embrace a culture of togetherness that extends far beyond the walls of our office. Feel like you belong at HRT? Our goal is to find the best people and bring them together to do great work in a place where everyone is valued. HRT is proud of our diverse staff; we have offices all over the globe and benefit from our varied and unique perspectives. HRT is an equal opportunity employer; so whoever you are we’d love to get to know you. Please be advised: Use of AI tools during interviews or assessments is strictly prohibited, unless otherwise instructed or agreed upon. We employ various methods to evaluate the authenticity of candidate responses. If we determine that AI assistance was used during any stage of the hiring process, we reserve the right to immediately disqualify your candidacy or rescind any job offers extended.

Role Description As a Security Product Researcher at Corelight, you will collaborate closely with product management, engineering, and network security experts to investigate, design, test, and construct solutions for complex network security challenges. You will play a pivotal role in defining what is achievable for future Corelight products and setting the benchmark for network detection in the cybersecurity landscape. Responsibilities - Turn theory into code with rapid prototyping. - Lead early development initiatives by coding and scripting rapid prototypes (using tools like Zeek, Suricata, and AI/LLMs). - Demonstrate a proven ability to utilize AI, including Large Language Models (LLMs) and agentic systems, for both software development and cybersecurity applications. - Work in close partnership with leaders in product, research, and engineering on the forthcoming generation of network security AI products. - Manage and advance projects from their initial concept to customer deployment and testing. - Harness existing capabilities to find innovative ways to enhance the usability, deployment, and consumption of Corelight products. - Cultivate new product ideas and features, driven by a strong sense of curiosity and a passion for innovation. - Champion innovation within Corelight and its customer base. Qualifications - A strong dedication to our core values: low-ego results, tireless service, and applied curiosity. - 5+ years of experience in agile development within a full-stack environment with demonstrated experience in LLM and agentic AI ecosystems. - A solid grasp of the cybersecurity landscape, with a particular emphasis on network detection and response. - The ability to work autonomously, manage multiple tasks, and iterate on solutions with speed and efficiency. - Understanding of computer networking, including layers 2-7 of the OSI model and their contributions to network operations and security. - A thorough understanding of network security concepts, including encryption, protocol abuse, and patterns of attack. - Understanding of security operations, threat hunting, and incident response procedures. - Customer-centric communication skills for effective interaction both internally and with external stakeholders. Preferred Qualifications - Hands-on experience with Security Information and Event Management (SIEM) systems such as Splunk or Elastic. - A strong background in adopting and utilizing Agile development methodologies and tools. - Exceptional communication skills, with a history of successful collaboration across UX, engineering, and product teams. - Familiarity with data analytics, AI-assisted security decision-making, and automation. - Education: A degree in Computer Science, Cybersecurity, or a related technical field (or equivalent practical experience). Compensation Range $146,000 — $198,000 USD Why Join Us? Fueled by investments from top-tier venture capital organizations such as Crowdstrike, Accel and Insight, Corelight is one of the fastest growing network detection and response platforms in the industry. Our passionate team thrives in a collaborative, inclusive, and geographically distributed culture. We embrace diverse perspectives, neurodiversity, curiosity and low ego results - fostering an environment where every innovator can solve the toughest challenges in cybersecurity and contribute their best work.

• Develop, drive, and implement the overall information security program (goals, objectives, and policies) while establishing departmental goals and priorities to execute on that vision. • Establish a defined, consistent security architecture standard and work with business units to implement technical controls in line with cutting edge best in class security and privacy standards. • Drive domestic and international projects to meet emerging cyber security requirements, data protection and privacy laws. • Implement approved policies and procedures to ensure information security efforts are properly coordinated and in compliance to make recommendations for changes and improvements to reduce the overall security risk. • Monitor and assess the compliance of the organization with information security policies and procedures, while ensuring third-party compliance. • Oversee incident response planning, data loss prevention and remediation of breaches, serving as the focal point for response delivery. • Implement an ongoing risk assessment program targeting information security and privacy matters; recommend methods for vulnerability detection and remediation and perform and/or oversee vulnerability testing. • Coordinate and deliver information security reporting and assessments as required by regulatory agencies, clients, and management. • Work with peers across the company to review customer feedback/ requirements and ensure that security strategy and roadmaps are aligned with the security needs of customers. • Keep current on latest security and privacy legislation, regulations, alerts, and vulnerabilities pertaining to the organization. Conduct continual research to maintain knowledge of technology, customer needs and overall requirements. • Participate in key initiatives and projects to ensure that cybersecurity controls are accounted for early within the project and software development lifecycles. • Work with the division to ensure risk assessments are conducted on high-risk business applications. Provide escalation for high-risk issues arising from those assessments. Ensure remediation plans are tracked to completion.