Senior Security Engineer

BitPay, an innovator in cryptocurrency payment services, is expanding its Information Security team! We're searching for a Senior Security Engineer who is not just passionate about safeguarding digital resources and infrastructure but is also excited to contribute to the growth and security of a leading cryptocurrency organization. If you're someone who thrives in a dynamic, fast-paced environment and is always ready to tackle new challenges, you'll fit right in with our dedicated team.

Your Role and Impact:

As a Senior Security Engineer, you'll play a key role in both strategizing and executing our security roadmap. This position blends strategic planning with hands-on technical work, offering you an opportunity to enhance the security foundation of our operations. You'll work closely with our Information Security and Information Technology teams, driving initiatives that protect our company and our customers.

Key Responsibilities:

• Security Implementation: Implement technical security measures in line with business goals, including hands-on execution.
   
• Monitoring & Alerting: Manage security monitoring and alerting systems.
   
• Infrastructure Security: Manage protection of endpoints, servers, and security platforms.
   
• Cloud Security: Offer guidance and execute strategies for securing cloud infrastructure and data.
• Metrics & Reporting: Produce security metrics and reports for various stakeholders.
   
• Compliance & Regulatory Alignment: Ensure compliance with cybersecurity requirements in collaboration with CISO and CTO.

Requirements:

• Security Expertise: Broad experience in security technologies and principles.
• Vulnerability Management: Experience with vulnerability assessments and remediation.
• Infrastructure Security: Experience securing endpoints, servers, and cloud resources.
• IaC & DevSecOps: Proficiency with Terraform and DevSecOps procedures.
• Data Security: Knowledge of data encryption, privacy, and protection techniques.
• Compliance Awareness: General knowledge of regulatory requirements (e.g. NIST, ISO 27001, SOC 2, PCI, NYDFS Part 500, or similar standards).
• Blockchain Awareness: Consumer level knowledge of cryptocurrencies and blockchain.
• Professional Background: At least 3 years of experience with relevant security engineering training or certification.
• Location: Eastern time zone.

Nice To Have:

• Advanced Cloud Security: Familiarity with AWS security architecture.
• Secrets Management: Understanding of secrets management practices.
• Automation & Orchestration: Ability to automate security solutions.
• Language Skills: Experience with 1 or more development languages, GitHub, and CI/CD pipelines.
• Certifications: CISSP, AWS Security, or similar certifications are preferred.

What We Offer:

• Collaborate with a team of intelligent, enthusiastic individuals
• Thrive in a rapidly expanding crypto company with global reach, where your contributions make a tangible impact
• Access to continuous learning and development opportunities, supported by professional development reimbursement
• Competitive salary package with comprehensive benefits, including fully covered medical and dental plans. We also offer telemedicine, life insurance, disability insurance, vision coverage, 401k, travel assistance, and more
• Option to receive payment in cryptocurrency, along with a crypto match program
• Stock option awards available to all employees
• Generous vacation policy, including the opportunity to take a sabbatical and select your own holidays
• Home office allowance, reimbursement for internet/cell expenses, complimentary Amazon Prime and Spotify subscriptions