\nStrike's mission is to build a more connected financial world.\n\nStrike allows users to send and receive money anywhere, instantly, with no added fees. Strike is built on top of the Bitcoin network – the largest global, interoperable and open payments standard. Strike believes that open payment networks enable universal participation in the financial system, ushering in a new digital economy with truly borderless money transfers. Strike leverages Bitcoin’s open payment network to offer users the first global peer-to-peer payments app and a novel bitcoin-native payments experience.\nRole:\n\nStrike is looking to hire a senior level Product Security Engineer to help harden our products and infrastructure. You will be working directly with our engineering teams to ensure the secure design and implementation of Strike’s products, services, and infrastructure. You will be responsible for maintaining our product’s security by performing technical security assessments, threat modeling, security code reviews, and vulnerability testing.\n\nAs an early member of our security team, you will have a meaningful impact on our security priorities and direction. We are a young organization with very unique products. As such, we have an abundance of exciting security challenges and opportunities. You will have to wear many hats, and design solutions that scale.\nResponsibilities:\n\n\n* Identify, triage, and provide remediation guidance for product and infrastructure vulnerabilities\n\n* Work with Strike engineering teams to design more security infrastructure and products\n\n* Think like an attacker to identify weaknesses in application architecture\n\n* Improve developer tooling and adoption to build a more robust SSDLC\n\n* Assist incident response teams with application security expertise and tools\n\n* Support and expand the product security engineering programs\n\n\n\nRequirements:\n\n\n* 3+ years working in product or application security roles\n\n* Experience auditing code and completing code reviews in languages like C#, Javascript, Swift and scripting languages\n\n* Experience with penetration testing with a focus on web application security\n\n* Experience in cloud security architecture and infrastructure (preferably GCP)\n\n* Identify and prioritize risks through threat modeling exercises with engineering teams\n\n* Experience providing security knowledge and guidance to engineering team\n\n* Demonstrated understanding of web application security\n\n* Strong understanding of OWASP Top 10 vulnerabilities\n\n\n\nNice to have:\n\n\n* Technical understanding of Bitcoin and lightning\n\n* Experience with security bug bounties\n\n* Published contributions to the security community\n\n* Presentation experience at industry events\n\n* Experience working with compliance, privacy, IT, networking or related functions\n\n\n\n\n\nThe ideal candidate application will contain a cover letter that provides a brief outline detailing a unique combination of skills, experience and how Strike would benefit from working with you. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, Bitcoin, Swift, Testing, Cloud, Senior, Engineer and Digital Nomad jobs that are similar:\n\n $60,000 — $120,000/year\n \n\n#Location\nWorldwide