Crypto Security Engineer

Blockchain is connecting the world to the future of finance. As the most trusted and fastest-growing global crypto company it helps millions of people worldwide safely access cryptocurrency. Since its inception in 2011 Blockchain has earned the trust of over 90 million wallet holders and more than 40 million verified users facilitating over $1 trillion in crypto transactions.

Youll be the hands-on security engineer embedded with the Institutional Trading and Financial Operations (FinOps) team. Your focus is the secure operation of off-chain trading processes and infrastructure that empowers our institutional business: integrations signing flows key custody interfaces middle-office workflows order routing and settle pipelines that handle significant capital. You will support risk assessments operating controls automation to detect operational anomalies and remediation coordination. This is a high-visibility role where you will focus on operational security engineering - ensuring that the tools and processes our traders use are resilient against both external threats and internal errors. This role does not require smart-contract auditing.

WHAT YOU WILL DO

• Partner with Trading Middle Office and Quant (Institutional FinOps) teams to map out inventory trading systems data flows third-party integrations and custody/settlement touchpoints.
• Conduct deep-dive assessments mapping critical assets and workflows to identify structural vulnerabilities. You will be responsible for defining the Target State and drafting the strategic Risk Treatment Plans (RTP) required to meet institutional-grade standards (e.g. CCSS NIST DORA).
• Act as the primary security liaison for Senior Management and third-party vendors. You will translate complex technical gaps into actionable business risk summaries drive vendor evaluations for core security infrastructure and manage the project lifecycle for high-impact posture uplifts.
• Implement and maintain monitoring for FinOps-specific security signals such as abnormal order patterns signature misuse unusual settlements. You will integrate these signals into our SIEM/SOAR for real-time response.
• Support secrets and key-management hygiene. You will ensure app/service keys are stored in KMS/Vault scoped to least privilege and rotated automatically to prevent credential leakage.
• Assist product security in triage of SAST/SCA findings for FinOps-related repositories. You will help implement CI checks and remediation playbooks.
• Participate in incident exercises post-incident reviews and remediation tracking for trading incidents.
• Document controls and produce concise risk summaries for FinOps leads and the Security.

WHAT YOU WILL NEED

• 5 years in security engineering platform security or application security experience.
• Proven expertise in Threat Modeling. Ability to perform structured reviews (e.g. STRIDE) of complex data flows and operational processes.
• Experience with observability and detection tooling (SIEM logs metrics) and ability to write basic detection rules.
• Practical experience with KMS/HSM secrets management platforms (Vault 1Password AWS/GCP KMS) IAM patterns and least-privilege.
• Exceptional ability to translate Technical Debt into Business Risk for C-suite stakeholders (CFO CTO Head of Trading).
• Ability to raise read and audit Pull Requests in at least one language used in our stack (TypeScript Java/Kotlin Python).
• Experience conducting technical due diligence and scoping for third-party security integrations.

NICE TO HAVE

• Familiarity with trading systems or financial operations (market-making execution settlement) or close collaboration background with trading/quant teams.
• Exposure to blockchain on-chain concepts (wallets addresses transactions) but no requirement to audit contracts.
• Familiarity with SOC operations and post-incident forensic analysis.
• Familiarity with SOC2 ISO 27001 or financial audit requirements
• Any relevant industry certification

Blockchain is committed to diversity and inclusion in the workplace and is proud to be an equal opportunity employer. We prohibit discrimination and harassment of any kind based on race religion color national origin gender gender expression sex sexual orientation age marital status veteran status disability status or any other characteristic protected by law. This policy applies to all employment practices within our organization including hiring recruiting promotion termination layoff recall leave of absence and apprenticeship. Blockchain makes hiring decisions based solely on qualifications merit and business needs at the time.

You may contact our Data Protection Officer by email at Your personal data will be processed for the purposes of managing Controllers recruitment related activities which include setting up and conducting interviews and tests for applicants evaluating and assessing the results thereto and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller which are the solicitation evaluation and selection of applicants for employment.

Your personal data will be shared with Greenhouse Software Inc. a cloud services provider located in the United States of America and engaged by Controller to help manage its recruitment and hiring process on Controllers behalf. Accordingly if you are located outside of the United States your personal data will be transferred to the United States once you submit it through this site. Because the European Union Commission has determined that United States data privacy laws do not ensure an adequate level of protection for personal data collected from EU data subjects the transfer will be subject to appropriate additional safeguards under the standard contractual clauses.

Your personal data will be retained by Controller as long as Controller determines it is necessary to evaluate your application for employment. Under the GDPR you have the right to request access to your personal data to request that your personal data be rectified or erased and to request that processing of your personal data be restricted. You also have the right to data addition you may lodge a complaint with an EU supervisory authority.