Search...

Staff Cloud Security Engineer

NinjaTrader logo
NinjaTrader

NinjaTrader is a futures trading provider offering an integrated, multi-device trading platform for active traders. It provides tools, services, and support for both new and experienced traders to access global futures markets, including Micro E-mini futures.

Chicago, USA

Investors

About NinjaTrader

NinjaTrader delivers integrated multi-device trading using a cloud-based technology designed for active futures traders. They provide access to the world’s most popular futures markets, including E-mini indexes, with no deposit minimums, low margins, and low commissions. The platform is highly customizable, allowing users to integrate thousands of third-party add-ons or develop their own tools using a C# based framework. NinjaTrader is a futures trading provider that centralizes tools and services for both new and experienced traders, offering professional trading platforms for charting, free trading simulation, and comprehensive support resources.

View jobs by NinjaTrader

Skills

About the Role

As a Staff Cloud Security Engineer, you'll be the most senior individual contributor responsible for the security of the cloud platform. You'll set the technical direction for how workloads are secured across Google Cloud Platform, design edge and perimeter defenses using Cloudflare and Google Cloud Armor, and build the guardrails that enable engineering teams to move quickly without compromising security. This is a hands-on, high-impact individual contributor role where you won't manage people but will establish engineering standards across the organization, influence company-wide architecture decisions, and serve as the senior technical authority during security reviews and incidents.

Requirements

  • 8+ years of experience in security engineering, including at least 5 years focused on cloud security in production environments
  • Deep hands-on expertise securing Google Cloud Platform environments, including IAM, networking, VPC Service Controls, Security Command Center, KMS, and Organization Policy
  • Demonstrated production experience with Cloudflare, including WAF, DDoS Protection, Zero Trust/Access, Bot Management, and Google Cloud Armor
  • Strong Infrastructure-as-Code experience using Terraform and securing CI/CD pipelines
  • Proficiency in at least one programming or scripting language such as Python or Go for automation and tooling
  • Experience securing workloads within regulated industries and familiarity with frameworks such as PCI DSS, SOC 2, ISO, SOX, or similar
  • Demonstrated technical leadership and the ability to influence engineering teams without direct authority

Responsibilities

  • Own the cloud security architecture across GCP environments, including IAM and least privilege design, VPC Service Controls, Organization Policy, Shared VPC, Workload Identity, KMS/encryption, and Security Command Center
  • Design, deploy, and tune edge and application-layer defenses using Cloudflare (WAF, DDoS Protection, Zero Trust/Access, Bot Management, Rate Limiting) and Google Cloud Armor
  • Lead threat modeling and security architecture reviews for new services and major platform changes while balancing business velocity with security risk
  • Build security guardrails as code through policy-as-code, secure Terraform modules, and CI/CD security controls
  • Advance cloud detection and response capabilities by partnering with the SOC and Incident Response teams on logging pipelines, Chronicle/SIEM detections, and cloud-native alerting
  • Serve as a senior technical responder during security incidents, including investigation, containment, remediation, and post-incident hardening
  • Partner with GRC and Compliance teams to translate regulatory requirements such as ISO, SOC 2, SOX, and similar frameworks into scalable technical controls and evidence
  • Mentor senior and mid-level engineers while raising the overall security maturity of the engineering organization
  • Represent Cloud Security during cross-functional planning, architecture reviews, and strategic initiatives

Benefits

  • Generous PTO
  • 7 Paid Holidays Annually + 5 Conditional Holidays Annually
  • 1 Service Day Annually
  • 401k with 3.5% Company Match
  • Paid Parental Bonding Leave
  • Health, Vision, Dental Coverage
  • Life and Disability Insurance Covered 100% by NinjaTrader
  • 20 additional flex remote days annually
  • 5 Company Wide Office-Optional weeks tied to major holidays