Security Application Engineer

This role will require being full-time onsite at our Palo Alto office to support collaborative team dynamics and innovative problem-solving.

We are seeking a Senior Application Security Engineer to lead the technical execution of our product security strategy. This role focuses on securing high-growth FinTech and Web3 digital asset platforms by building end-to-end security programs and integrating automated security controls directly into the software development lifecycle. The ideal candidate has a deep engineering background, hands-on experience defending complex cloud environments, and a passion for securing blockchain-adjacent technologies.

• →Lead comprehensive threat modeling and product security architecture reviews in collaboration with cross-functional teams.
• →Integrate security automation into CI/CD pipelines utilizing SAST, DAST, and continuous vulnerability management tools.
• →Architect and implement secure-by-default cloud infrastructure on AWS using Terraform and Kubernetes.
• →Design and deploy robust encryption services, key management systems (KMS), and advanced data protection controls across distributed environments.
• →Oversee operational security initiatives including corporate bug bounty programs, incident response workflows, and regular penetration testing engagements.
• →Secure next-generation AI-integrated applications by establishing input/output validation protocols and LLM guardrails.
• →Engineer proactive defenses to safeguard platform infrastructure against sophisticated adversaries and nation-state-level threats.

• 8+ years of experience engineering and scaling end-to-end security programs for high-growth startups.
• Proven background securing platforms within FinTech, Web3, and digital asset ecosystems.
• Strong engineering proficiency in distributed systems, microservices, and languages such as Python or Java.
• Hands-on mastery of container security, Kubernetes orchestration, and AWS infrastructure hardening.
• Practical knowledge of implementing technical controls to meet SOC 2 Type II and GDPR compliance standards.
• Deep expertise in securing AI/ML lifecycles, MLOps frameworks, and agentic AI platforms.
• Bachelor’s degree in Computer Science, Engineering, or an equivalent technical field.