>_TwojRekruter
/Senior Security Engineer, Application Security

Senior Security Engineer, Application Security

United States (Remote)Remoteusvia direct
// Job Type
Full Time
// Salary
USD 100 - 100/hour
// Salary Range
100–100 USD / hour
// Posted
1 month ago

About the Role

<h2><span style="font-size: 12pt;">About Us</span></h2> <p>Turnkey is developer-first infrastructure for private key management, making it simple to create wallets, sign transactions, and automate on-chain actions through one elegant API, without ever exposing sensitive key material. Founded by the team who scaled Coinbase Custody from zero to a $100M+ ARR business and helped protect over $100B in crypto assets, Turnkey is tackling crypto security at its foundational level. Our mission is to make strong cryptography the default across the open internet the same way AWS made scalable computing the default for software.</p> <p>Our team is low-ego, high-agency, and high-autonomy, with a significant amount of combined experience in cryptography, security, and low-level systems. We're building the trustless, programmable infrastructure that will power the next wave of mass-market crypto applications and we're looking for people who want to shape what that future looks like.</p> <h2><span style="font-size: 12pt;">Role Overview</span></h2> <p><span style="font-size: 12pt;">We are hiring a Senior Application Security Engineer to join Turnkey's team and help ensure our systems, pipelines, and runtime environments are secure by design and resilient at scale.</span></p> <p><span style="font-size: 12pt;">You'll embed directly with product and infrastructure engineering teams, shaping how security is integrated into every aspect of our architecture. This is a hands-on, builder role ideal for someone who enjoys building secure systems from the ground up.</span></p> <h2><span style="font-size: 12pt;">What You’ll Do</span></h2> <p><span style="font-size: 12pt;">You will partner with Product and Engineering at both the design and development stage to ensure that we implement new features securely, including (but not limited to):</span></p> <ul> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Participating in the implementation efforts</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Doing security reviews</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Helping with product design decisions</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Auditing and surfacing vulnerabilities in our current products</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Conducting threat modeling and security assessments for new features and systems, identifying risks early and shaping secure architectural decisions.</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Developing and improving our Automated Tooling: further enhancing our automated tooling to scale our product security capabilities and find potential code problems both before and after we deploy</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Making the safe way, the easy way: work on defining and building application guardrails so that developers can build securely by default</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Investigating and remediating security issues, including vulnerabilities and incidents, and drive long-term improvements to prevent recurrence</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Embedding a culture of secure development across engineering, defining practices that influence how Turnkey builds, deploys, and maintains systems at scale.</span></li> </ul> <h2><span style="font-size: 12pt;">What We're Looking For</span></h2> <ul> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Bachelors degree in Computer Science, Engineering, or a related field</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">5+ years of experience in application or product security, ideally in fast-moving, high-impact or crypto-native environments</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Strong understanding of web, mobile, and cryptographic security fundamentals (e.g. OWASP Top Ten, SANS/CWE Top 25)</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Proficiency in programming and scripting languages (Typescript/Javascript, Go, Rust) and</span><br><span style="font-size: 12pt;">experience building secure systems from the code up</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Hands-on experience with security testing tools and methodologies (static/dynamic analysis, pen testing, etc.)</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Strong understanding of cloud, containerized, and runtime environments (AWS, GCP, Docker, Kubernetes), with the ability to embed security early in the SDLC</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Excellent analytical, problem-solving, and communication skills, with a collaborative mindset for partnering across product and infrastructure teams</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Curious, proactive, and passionate about building secure, reliable systems in a fast moving startup environment</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">A builder mentality; comfortable operating with ambiguity, tackling incomplete systems, and applying hands-on engineering experience to security challenges.</span></li> </ul> <h2><span style="font-size: 12pt;">Style Points</span></h2> <ul> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Familiarity with crypto or DeFi systems and their unique security challenges</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Familiarity with threat modeling frameworks and cloud-native security tooling</span></li> </ul> <h2><span style="font-size: 12pt;">What We Offer</span></h2> <ul> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Full benefits, including medical, dental, vision, life, disability, HSA/FSA, 401(k) - detailed benefits overview available as we get further in the process</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Paid parental leave</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Unlimited PTO</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">$3,000/yr learning and development budget to attend industry conferences</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Multiple team offsites per year</span></li> <li style="font-size: 12pt;"><span style="font-size: 12pt;">Lunch stipend<br></span></li> </ul> <div class="_descriptionText_oj0x8_198"> <p><em>Turnkey is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or any other characteristic protected by law. We encourage individuals of all backgrounds to apply.</em></p> </div><div class="content-pay-transparency"><div class="pay-input"><div class="title">Compensation range</div><div class="pay-range"><span>$175,000</span><span class="divider">&mdash;</span><span>$275,000 USD</span></div></div></div>
View on Original Source

Interested in this job?

Login to Apply

Use our AI to tailor your resume for this Senior Security Engineer, Application Security position at Turnkey.

Login to Apply