Security & Platform Engineer (Windows Infrastructure)

Qube Research & Technologies (QRT) is a global quantitative and systematic investment manager, operating in all liquid asset classes across the world. We are a technology- and data-driven group implementing a scientific approach to investing. Combining data, research, technology, and trading expertise has shaped our collaborative mindset, which enables us to solve the most complex challenges. QRT's culture of innovation continuously drives our ambition to deliver high-quality returns for our investors. You will join the Windows Infrastructure team, responsible for building and operating Windows and end-user platforms with a strong focus on secure-by-design engineering across Azure, Microsoft 365, Intune, and Citrix VDI. You will work closely with Security stakeholders as the Windows and end-user platform security specialist. Your Future Role within QRT You will: Design, optimise, and enhance a highly available, scalable, and secure Windows-based platform across Microsoft Azure, Microsoft 365, Intune, and Citrix VDI Own and evolve the Citrix DaaS / Virtual Apps and Desktops platform, ensuring performance, availability, and security requirements are met Drive standardisation and platform hardening across Windows 10/11, VDI images, and cloud-hosted workloads Monitor and improve performance, reliability, and cost-effectiveness across Azure, Citrix, Microsoft 365, and Intune Act as the primary security point of contact for Windows and end-user platforms, partnering closely with Security stakeholders Embed secure-by-design principles into Windows, cloud, identity, and VDI platform engineering Implement and maintain endpoint and identity security controls, including Intune security baselines/configuration profiles, Conditional Access, Entra ID security controls, and device compliance/posture enforcement Implement Windows hardening standards using Group Policy, Intune, CIS/Microsoft security baselines, and privileged access controls Partner on vulnerability remediation, secure configuration, endpoint/identity/VDI incident response support, and audit/compliance requirements Ensure Windows Update, patching, and lifecycle management meet security and operational standards Develop and maintain automation and infrastructure-as-code using PowerShell, Terraform, ARM templates, and related tooling Automate build, configuration, compliance, and validation of Windows and Citrix platforms Reduce manual operations through repeatable, secure, and auditable engineering practices Provide senior-level troubleshooting across Windows, Azure, Citrix, identity, and endpoint platforms; act as an escalation point for complex issues Produce and maintain technical documentation, architecture designs, and operational runbooks Evaluate and recommend technologies and approaches to improve security, resilience, and scalability Your Present Skillset Strong foundations in security engineering, with practical experience applying security controls in Windows and cloud environments Extensive experience with Microsoft Azure, Entra ID, Microsoft 365, Intune, and Windows 10/11 in an enterprise environment Extensive experience with Citrix DaaS and Virtual Apps & Desktops Strong background in Active Directory, Group Policy, DNS, and identity services Experience with Autopilot and modern endpoint deployment strategies Strong understanding of Windows patching, lifecycle management, and operational security Hands-on experience with Conditional Access and identity protection, device compliance/posture management, and secure configuration/hardening standards Advanced PowerShell scripting and automation skills Experience with Terraform, ARM templates, and configuration management tooling (e.g., Ansible, MECM) Experience with monitoring, alerting, and performance tuning across Azure and Windows platforms Clear communication and effective collaboration across Infrastructure and Security stakeholders Strong ownership mindset, balancing security, usability, and operational efficiency Strong documentation and technical design skills QRT is an equal opportunity employer. We welcome diversity as essential to our success. QRT empowers employees to work openly and respectfully to achieve collective success. In addition to professional achievement, we are offering initiatives and programs to enable employees achieve a healthy work-life balance. Responsibilities You will design, optimize, and enhance a highly available, scalable, and secure Windows-based platform across various technologies. Additionally, you will act as the primary security point of contact for Windows and end-user platforms, ensuring performance, availability, and security requirements are met.

Security Engineering, Microsoft Azure, Entra ID, Microsoft 365, Intune, Windows 10/11, Citrix DaaS, Active Directory, Group Policy, DNS, PowerShell, Terraform, Automation, Monitoring, Incident Response, Technical Documentation