Design an electronic trading platform that supports equities trading with limit and market orders. Specify how you would: ( 1) maintain per-symbol order books and implement a price–time priority matching engine; ( 2) ingest and normalize market data from multiple venues and publish snapshots plus incremental updates with bounded skew; ( 3) expose authenticated APIs for order entry (REST/gRPC) and a low-latency streaming protocol for market data; ( 4) perform pre-trade risk checks (credit/position/price bands), ensure idempotent submissions, and provide exactly-once execution reports; ( 5) achieve P99 end-to-end acknowledgement under 5 ms within one region at 200k orders/second peak, and scale horizontally for bursts; ( 6) persist state with an append-only log or event sourcing, support deterministic replay/backtesting, and meet strict auditability; ( 7) handle partial fills, cancels, mass cancels, auctions, market halts, and symbol pauses; ( 8) design partitioning/sharding of order books, concurrency control inside the matcher, recovery and disaster recovery (RPO ≈ 0, RTO < 1 minute); ( 9) address fault tolerance, time synchronization and clock skew (e.g., PTP), fairness across partitions, backpressure, and flow control; ( 10) define monitoring, SLOs, capacity planning, and strategies to test latency and correctness under failures.

This question evaluates expertise in designing low-latency, high-determinism electronic trading systems, covering order matching, market data ingestion and publish, partitioning/sharding, persistence for auditability, idempotency, pre-trade risk controls, and operational reliability.

How do I approach System Design interview questions?

System Design questions require understanding of core concepts and practice. PracHub provides solutions with explanations to help you master system design interviews.

What difficulty level is this interview question?

This is a hard difficulty System Design question, commonly asked during Technical Screen rounds at Citadel.

What role is this question designed for?

This question is commonly asked for Software Engineer candidates at Citadel during technical interviews.

Design a low-latency trading system | Citadel Interview Question

Q: Design a low-latency trading system

This question evaluates expertise in designing low-latency, high-determinism electronic trading systems, covering order matching, market data ingestion and publish, partitioning/sharding, persistence for auditability, idempotency, pre-trade risk controls, and operational reliability.

Q: How do I approach System Design interview questions?

System Design questions require understanding of core concepts and practice. PracHub provides solutions with explanations to help you master system design interviews.

Q: What difficulty level is this interview question?

This is a hard difficulty System Design question, commonly asked during Technical Screen rounds at Citadel.

Q: What role is this question designed for?

This question is commonly asked for Software Engineer candidates at Citadel during technical interviews.

System Design: Low-Latency Electronic Trading Platform (Equities)

You are designing a single-region electronic trading platform (exchange/ATS-like) that supports market and limit orders for equities. Assume co-located clients in the same region and a need for high determinism, strict auditability, and robust failure handling. Design the system to meet the following requirements:

Order Books and Matching

Maintain a separate order book per symbol.
Implement a price–time priority matching engine (FIFO within each price level).

Market Data Ingest and Publish

Ingest and normalize market data from multiple external venues.
Publish market data for your platform (snapshots and incremental updates) with bounded skew across symbols/shards.

Client Interfaces

Expose authenticated APIs for order entry (REST and/or gRPC).
Provide a low-latency streaming protocol for market data.

Risk, Idempotency, and Reports

Perform pre-trade risk checks (credit, position, and price bands).
Ensure idempotent order submissions.
Provide exactly-once execution reports to clients.

Performance and Scale

Achieve P99 end-to-end acknowledgement under 5 ms within one region at 200k orders/second peak.
Scale horizontally to handle bursts beyond the steady-state peak.

Persistence and Auditability

Persist state via an append-only log or event sourcing.
Support deterministic replay/backtesting and strict audit trails.

Trading Scenarios

Correctly handle partial fills, cancels, mass cancels, auctions, market halts, and symbol pauses.

Partitioning, Concurrency, and Recovery

Design partitioning/sharding of order books.
Define concurrency control inside the matcher.
Support recovery and disaster recovery (RPO ≈ 0, RTO < 1 minute).

Reliability and Fairness

Address fault tolerance, time synchronization and clock skew (e.g., PTP), fairness across partitions, backpressure, and flow control.

Operability

Define monitoring, SLOs, capacity planning, and strategies to test latency and correctness under failures.

Assumptions:

Orders are day-only, with tick size of $0.01; extend as needed.
Clients are authenticated institutional participants.
One production region with multiple AZs; optional warm-standby region for DR.

System Design: Low-Latency Electronic Trading Platform (Equities)

Order Books and Matching

Maintain a separate order book per symbol.
Implement a price–time priority matching engine (FIFO within each price level).

Market Data Ingest and Publish

Ingest and normalize market data from multiple external venues.
Publish market data for your platform (snapshots and incremental updates) with bounded skew across symbols/shards.

Client Interfaces

Expose authenticated APIs for order entry (REST and/or gRPC).
Provide a low-latency streaming protocol for market data.

Risk, Idempotency, and Reports

Perform pre-trade risk checks (credit, position, and price bands).
Ensure idempotent order submissions.
Provide exactly-once execution reports to clients.

Performance and Scale

Achieve P99 end-to-end acknowledgement under 5 ms within one region at 200k orders/second peak.
Scale horizontally to handle bursts beyond the steady-state peak.

Persistence and Auditability

Persist state via an append-only log or event sourcing.
Support deterministic replay/backtesting and strict audit trails.

Trading Scenarios

Correctly handle partial fills, cancels, mass cancels, auctions, market halts, and symbol pauses.

Partitioning, Concurrency, and Recovery

Design partitioning/sharding of order books.
Define concurrency control inside the matcher.
Support recovery and disaster recovery (RPO ≈ 0, RTO < 1 minute).

Reliability and Fairness

Address fault tolerance, time synchronization and clock skew (e.g., PTP), fairness across partitions, backpressure, and flow control.

Operability

Define monitoring, SLOs, capacity planning, and strategies to test latency and correctness under failures.

Assumptions:

Orders are day-only, with tick size of $0.01; extend as needed.
Clients are authenticated institutional participants.
One production region with multiple AZs; optional warm-standby region for DR.

Design a low-latency trading system

Quick Overview

System Design: Low-Latency Electronic Trading Platform (Equities)

Solution

Comments (0)

Design a low-latency trading system

Quick Overview

System Design: Low-Latency Electronic Trading Platform (Equities)

Solution

Comments (0)