SecOp Staff Engineer

Flow Traders is looking for a SecOp Staff Engineer to join our growing Security team in Amsterdam. This is a unique opportunity to join a leading proprietary trading firm with an entrepreneurial and innovative culture at the heart of its business. We value quick-witted, creative minds and challenge them to make full use of their capacities.

In this function you will play a crucial role in building the future of our security operations capability, with a strong focus on AI-driven threat detection, intelligent automation, and a threat-informed defense approach. You will work at the forefront of modern security operations, enabling Flow Traders to proactively detect and respond to threats while continuously enhancing our security posture.

What you will do

• Design, build, and operate next-generation security operations capabilities with a focus on automation, scalability, and intelligence
• Develop and maintain detection and response pipelines using AI and machine learning, with a goal of minimizing mean time to detect (MTTD) and respond (MTTR)
• Lead efforts in threat detection engineering, creating advanced detection rules and analytics informed by the latest threat intelligence and adversary tactics (e.g., MITRE ATT&CK)
• Drive SOAR (Security Orchestration, Automation and Response) initiatives, building and maintaining playbooks to automate repetitive tasks and streamline incident response
• Collaborate with internal stakeholders including DevOps, Platform Engineering, and Trading Technology to embed security controls and telemetry across Flow Traders’ environment
• Conduct threat hunting and adversary emulation exercises to validate and improve detection coverage and incident response readiness
• Contribute to incident response processes, supporting real-time investigations and post-incident analysis
• Continuously evaluate and integrate new technologies, tools, and methodologies that advance Flow Traders' threat-informed defense strategy

What you need to succeed

• Bachelor’s degree in Information Security, Risk Management, Computer Science, or a related field
• Strong knowledge of SIEM, SOAR, EDR, and log analytics tools (e.g., Splunk, Elastic, Sentinel, Cortex XSOAR)
• Proven experience (3+ years) in Security Operations, Security Engineering, or related roles in high-tech or finance environments
• Hands-on experience with automation/scripting languages (e.g., Python, PowerShell, Bash) and infrastructure-as-code tools
• Familiarity with AI/ML applications in cybersecurity (e.g., anomaly detection, behavior analytics) is highly desirable
• Deep understanding of threat intelligence frameworks and attack techniques (e.g., MITRE ATT&CK, threat modeling)
• Experience working with cloud environments (e.g., AWS, Azure) and containerized workloads (e.g., Kubernetes, Docker) from a security perspective
• Strong analytical and communication skills, with a mindset for continuous improvement and innovation
• Relevant certifications are a plus (e.g., GCIA, GCTI, GSEC, OSCP, or equivalent)

Flow Traders does not accept unsolicited resumes from any professional staffing or search firms. All resumes, and any other information identifying potential candidates, submitted to any employee at Flow Traders via-email, the Internet or directly without a valid and signed search agreement will be deemed free to contact by Flow Traders without any restrictions and no placement fee of any kind will be paid in the event the candidate is hired by Flow Traders.