Senior Security Engineer

We see a future where all banks will need to support digital assets and provide a responsive, online interface to tech-savvy customers. Custodia is already a chartered bank and is providing banking, money market fund, and bitcoin custody services to business customers. The Custodia team is comprised of all-stars with deep experience in both bitcoin and traditional financial services.
If you expect more from existing banks, join our team and help build a better one, from the ground up. We are currently looking for a passionate and dynamic individual to join our organization as a Senior Security Engineer. 
About Your Role
We are looking for an experienced senior security engineer to drive ongoing maturing in our cybersecurity practice. The ideal candidate will have experience in cloud security, secure software development lifecycle, CI/CD security, event detection and response, endpoint security, and incident response activities. This role reports to the Vice President (VP) of Information Security, and works directly with the Devops team.

Responsibilities & Results

• Collaborate closely with skilled devops and engineering teams to define and implement best practices related to infrastructure security, SDLC, and attack surface management.
• Work with the VP of Information Security to mature a robust and scalable incident response program, inclusive of the technologies, personnel, and processes. 
• Identify, implement, optimize, and operate cloud security tooling.
• Drive security alert development, rule tuning, and testing of configured alerts and thresholds.
• Own incident response plans, tabletop testing, and technical exercises. 
• Manage on-call schedule for response activities. 
• Provide security review and oversight of engineering and devops activities, including proposed changes and operations.

What You'll Bring

• Strong collaborative approach to problem solving. Vendor agnostic, capability first mindset.
• Interpersonal and written communication skills, including the ability to produce technical documentation, standard operating procedures, and security standards.
• Direct experience developing and securing cloud infrastructure and applications.
• Bachelor's Degree in Software Engineering, Computer Science, or related engineering field. 4 additional years of experience may be substituted for a degree.
• Experience with incident response processes. 5+ years of experience in devops, devsecops, application security, and/or cloud security. 
• Strong understanding of common security platforms (SIEM, EDR, IAM, WAF, vulnerability detection tools). 
• Strong understanding of key AWS services (e.g., EC2, S3, EKS, RDS, cloudwatch, guarduty, etc).
• Prior experience with infrastructure-as-code, especially Terraform.
• Prior experience with Kubernetes and related tooling.

These skills would be great but are not minimum requirements!

• A passion for cryptography 
• Working knowledge of digital assets / blockchain technologies 
• Security and/or AWS certifications

Why Join Us?

• Competitive Equity Package
• 100% Remote
• Amazing Growth Opportunity
• Unlimited PTO

For CO, NY, CA and WA residents, the salary range for this position is $115,000 - 185,000/year with additional equity compensation and bonus opportunity. Actual compensation may vary based on individual candidate experience and location.
Custodia embraces diversity and is proud to be an equal opportunity employer. As part of our commitment to diversifying our workforce, we do not discriminate on the basis of age, race, sex, gender, gender identity, color, religion, national origin, sexual orientation, marital status, citizenship, veteran status, or disability status.