Skip to main content
NEUN
Back to Careers

Crossmint

Senior Security Engineer

NYC or MiamiFull-timeGlobal

šŸ’° USD 180,000 - 210,000/yr

šŸ“Š MidšŸ  Hybrid
ActivePosted within the last 30 days

Job Description

[AI-summarized by JobStash]

You will own and operate day-to-day security for cloud infrastructure and applications. You will design, maintain, and monitor security controls, secure CI/CD and software supply chain, perform secure code reviews, manage access and credential rotation, drive vulnerability remediation, and support incident response and audit evidence collection.

Requirements

  • ā—4-8 years of experience as a security engineer
  • ā—3+ years hands-on experience securing AWS environments including IAM, Security Hub, CloudTrail, GuardDuty, and KMS
  • ā—Strong understanding of CI/CD security including GitHub Actions, secrets scanning, and dependency management
  • ā—Experience with secure code review or application security fundamentals
  • ā—Experience working with at least one compliance framework, preferably SOC 2
  • ā—Highly organized with strong attention to detail
  • ā—Comfort operating in a fast-paced startup environment and communicating security concepts to non-technical stakeholders
  • ā—Experience using AI-assisted tools such as Claude or GitHub Copilot
  • ā—Ability to work flexible hours if an incident arises
  • ā—Nice to have: fintech or payments experience
  • ā—Nice to have: exposure to DORA or MiCA compliance requirements
  • ā—Nice to have: familiarity with crypto or blockchain security considerations

Responsibilities

  • ā—Own and operate cloud security across AWS and other cloud environments
  • ā—Design, maintain, and monitor engineering security controls including IAM, logging, monitoring, and key management
  • ā—Secure CI/CD pipelines, GitHub Action environments, secrets management, and software supply chain
  • ā—Manage security-related access controls, privileged access, service accounts, and credential rotation
  • ā—Perform secure code reviews and provide application security support
  • ā—Review authentication flows, payment logic, and API security and partner with engineers on remediation
  • ā—Coordinate external security reviews with third-party auditor firms
  • ā—Own vulnerability management workflows including prioritization, remediation tracking, and verification
  • ā—Support incident response through triage, investigation, and remediation
  • ā—Collect evidence and document controls to support SOC 2 and other compliance audits

Benefits & Perks

  • ā—Extensive access to leading AI tools and subscriptions
  • ā—Stock options program
  • ā—Two performance reviews annually
  • ā—Unlimited flexible PTO
  • ā—Flexible work schedule
  • ā—Company laptop and allowance for home equipment
  • ā—Daily stipend for commuting to the office
  • ā—Company-paid trips for annual off-sites and onsites
  • ā—Insurance covered by Crossmint
  • ā—401(k) Plan

Tech Stack

Secrets managementmonitoringClaudevulnerability managementIAMauthenticationcompliancePAMcloud securitykey management
Expired
Search