Security Engineer - Mandarin Speaking

AI overview

Design, develop, and enhance the security platform, collaborating across teams to improve detection capabilities and security processes in on-premises and cloud environments.

About The Company

TMGM is one of the fastest-growing CFD and Forex brokers in the Asia-Pacific region, trusted by over 150,000 clients globally. With a strong focus on innovation, client satisfaction, and regulatory compliance, we continue to expand our presence across international markets.

About The Role

We are actively seeking an exceptionally qualified Security Engineer to design, develop, and enhance our security platform and controls across both on-premises and cloud environments. Collaborating with the SOC/incident response, IT/DevOps, and various business teams, you will enhance SIEM analytics, EDR policies and responses, identity and access (IAM) controls, as well as security logging and retention processes to expedite detection, containment, and risk-based decision-making. (This position encompasses fundamental traditional security engineer responsibilities.)

Key Responsibilities:

Endpoint & Detection Operations

  • Operate and fine-tune EDR, ensuring high visibility and timely response to detections.
  • Investigate alerts, triage incidents, and coordinate remediation with IT and engineering teams.
  • Develop and maintain detection rules, response playbooks, and operational dashboards.

Vulnerability & Exposure Management

  • Run regular vulnerability scans across endpoints, servers, and cloud workloads.
  • Prioritise findings based on exploitability and asset criticality.
  • Work with system owners to track remediation progress and verify fixes.

Cloud Security (AWS Focus)

  • Review and improve AWS configurations using AWS tools or CNAPP / CSPM monitoring tools (e.g., Wiz, Orca)
  • Support secure architecture and IaC practices (Terraform, CloudFormation) with dev teams.
  • Automate checks and alerting for misconfigurations and policy violations.

Secure Development & DevSecOps (Nice to Have)

  • Support developers on secure coding practices and pipeline integration (e.g., Snyk).
  • Review secrets management, API credential handling, and CI/CD pipeline security.

Identity & Access Control

  • Implement and maintain least privilege and MFA policies across systems.
  • Assist with SSO/SCIM integrations (e.g., Entra ID, 1Password, Cloudflare Zero Trust).

Collaboration & Continuous Improvement

  • Work alongside IT Operations and Cloud teams to deploy, harden, and monitor security tools.
  • Participate in incident response exercises, phishing simulations, and post-incident reviews.
  • Contribute to process documentation and internal knowledge base (e.g., runbooks, playbooks).

Requirements

  • 4–6 years of hands-on security experience, ideally in endpoint protection, cloud security, or vulnerability management.
  • Strong working knowledge of AWS security services, IAM, and network fundamentals.
  • Practical experience with EDR tools (CrowdStrike, Defender, etc.) and vulnerability scanners (Qualys, Tenable, etc.).
  • Solid understanding of incident response, detection engineering, and access control principles.
  • Exposure to security frameworks (ISO 27001, SOC 2, NIST) is a plus, but not mandatory.
  • Clear communicator who can explain security findings to both technical and non-technical teams.

Benefits

  • Hybrid working arrangement - 2 Days of remote work per week
  • Opportunities for enriching career growth, including exposure to regional contexts
  • Complimentary snacks and beverages available in the office pantry
  • Healthcare coverage (medical, dental, optical), gym benefits
  • Flexibility in smart casual dress code
  • Young, vibrant and open work culture

Perks & Benefits Extracted with AI

  • Free Meals & Snacks: Complimentary snacks and beverages available in the office pantry
  • Health Insurance: Healthcare coverage (medical, dental, optical), gym benefits
  • Remote-Friendly: Hybrid working arrangement - 2 Days of remote work per week

Join TMGM, a globally renowned multi-asset financial services provider headquartered in Sydney since 2013. With our expertise in clearing and broking services, we offer an extensive range of over 12,000 tradeable products, including Forex, CFDs, equities, and bonds.At TMGM, we take pride in our prestigious partnerships, such as being one of the Official Partners of the Australian Open and the Official Online Trading Platform of the AFF Suzuki Cup 2020. We are also honoured to sponsor the legendary world-champion Italian goalkeeper Gianluigi Buffon. Our relentless focus on streamlining and simplifying processes ensures we meet our client's needs with exceptional efficiency. We are driven by a vision to create a financial ecosystem that delivers a superior trading experience for every participant worldwide.

View all jobs
Ace your job interview

Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.

Security Engineer Q&A's
Report this job
Apply for this job