This website uses cookies to ensure you get the best experience.

CoinShares and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics and marketing purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor

These cookies are used to make advertising messages more relevant to you. In some cases, they also deliver additional functions on the site.

Vendors Youtube
Skip to main content
Information Technology · London

Cyber Security Engineer

Our Culture

CoinShares is an innovative, agile and ambitious organisation. We strive for excellence in everything we do. We are a high performance culture with a focus on:

  • Professional and personal integrity

  • Curiosity and a deep learning mindset

  • Transparency

  • Teamwork and collaboration

CoinShares is strongly committed to diversity and inclusion and warmly welcomes candidates from all backgrounds.

The Team

The security team exists to protect CoinSharesʼ digital assets, systems, people and data while enabling the business to operate securely without friction. The team safeguards the business against cyber threats in a highly regulated, cloud-first environment, ensuring that security is embedded into day-to-day operations and technology decisions - a trusted partner to the business, not a blocker. Working closely with all teams, the security team designs and maintains a robust cyber security framework that evolves alongside the business. Their work is central to maintaining operational resilience, regulatory confidence and the trust that underpins CoinSharesʼ position as a leading digital asset manager.

Role Profile

We are seeking an experienced and hands-on Cyber Security Engineer with at least 5 years of experience to join our security team. Working within the fast-paced digital finance sector, you will play a key role in designing, implementing and maintaining security controls across CoinShares' cloud-first environment. You will also be central to monitoring, analysing and responding to threats, strengthening our security posture and ensuring our infrastructure remains scalable, resilient and secure. The role is based in the City of London with 4 days in the office and 1 day from home.

Responsibilities

  • Design, implement and maintain security controls across all systems and environments, spanning enterprise IT, cloud infrastructure and digital asset operations.

  • Operate core security functions including endpoint protection, email security, identity and access management, data security and security monitoring.

  • Manage and continuously improve the firm's SIEM, SOAR and EDR/XDR tooling, ensuring effective alerting, tuning and integration with incident response processes.

  • Lead detection engineering and incident response, acting as the primary technical responder during security events and investigations.

  • Lead vulnerability management and remediation across all environments, prioritising based on risk and business impact.

  • Partner with IT, engineering and DevOps teams to embed security earlier in the development lifecycle, across infrastructure and into CI/CD pipelines.

  • Maintain and improve cloud security controls across AWS, leveraging CSPM tooling to monitor posture and drive remediation.

  • Conduct threat modelling, security architecture reviews and risk assessments for new systems, services and third-party integrations.

  • Support third-party and vendor risk assessments, including review of SOC 2 reports, penetration test reports and security questionnaires.

  • Contribute to the security of CoinShares' digital asset infrastructure, including custody and trading environments; prior exposure to crypto security is welcome but not expected.

  • Play an active role in compliance initiatives (e.g. SOX 404, SOC 2, DORA) through control design, evidence generation, penetration testing coordination and audit support.

  • Develop and maintain security standards, policies and technical documentation.

  • Continuously evaluate the emerging threat landscape and recommend improvements to CoinSharesʼ security posture.

Skills & Qualifications

  • 5 years' experience in a hands-on cyber security engineering or security operations role, with demonstrable breadth across multiple security domains.

  • Experience running security processes end-to-end across multiple domains within a small team environment, operating as a generalist rather than a specialist in a single area.

  • Bachelor's degree in Cyber Security, Computer Science, Information Technology, or equivalent practical experience.

  • Relevant certifications are desirable (e.g. CISSP, CEH, AWS Security Specialty or CCSP.

  • Prior exposure to digital asset infrastructure, crypto custody or trading environments is advantageous but not required.

Core Skills

  • Strong foundational knowledge across core cyber security domains: network security, endpoint security, cloud security, identity and access management, vulnerability management, threat detection, incident response and data security.

  • Solid understanding of security frameworks including NIST CSF 2.0 and SOC 2.

  • Experience working in a regulated environment; exposure to GDPR, DORA, SOX and the SEC Cybersecurity Rule is highly advantageous.

  • Hands-on experience with SIEM, SOAR and EDR/XDR platforms - configuration, tuning, alerting, and integration with response workflows.

  • Strong grasp of identity and access management including SSO, SCIM, access policies and secrets/credential management API keys and private keys).

  • Experience with vulnerability management tooling and a structured, risk-based approach to remediation.

  • Working knowledge of cloud security concepts and controls, ideally in AWS. Familiarity with CSPM tooling such as Wiz is highly desirable.

  • Ability to design and operate security controls that are pragmatic and proportionate to the business environment.

  • Strong problem-solving skills with a risk-based mindset and sound judgement under pressure.

  • Excellent written and verbal communication skills, with the ability to translate technical risk into clear language for non-security stakeholders.

Department
Information Technology
Locations
London
Information Technology · London

Cyber Security Engineer

Loading application form

Applicant tracking system by Teamtailor