Senior Security Engineer

• Be a security advocate and domain expert within the organization and be able to communicate security risk and concepts to both technical and non-technical audiences.
• Lead initiatives with Engineering teams to optimize threat models and mitigate risks.
• Encourage a positive security culture across the Engineering organization.
• Relentlessly champion for security outcomes on behalf of our customers.
• Work with other engineering leaders to embed security into day-to-day development processes.
• Help proactively assess security risk through product deep dives, threat modeling, and design, architecture and implementation reviews..
• Review and improve existing security processes related to product assessments, pen testing, and bug bounty findings.
• Develop product security controls and supervising strategies to grow our threat detection capabilities.
• Seek opportunities for security tooling and automation..

• 5+ years of proven experience securing enterprise applications and infrastructure, preferably in the Crypto and FinTech space.
• Experience with the application of threat modeling and other risk identification techniques.
• Strong understanding of the OWASP top 10, including details of common vulnerabilities and emerging threats.
• Experience with authentication and authorization standards, including OAuth and SAML, and their weaknesses.
• Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits.
• Experience with Cloud Computing providers like AWS, GCP, Azure.
• Problem solving skills to resolve problems effectively and creatively while maintaining a high level of flexibility, professionalism, and integrity

Ripple