Join our tight-knit early-stage distributed team that thrives on interesting technical challenges and building magical products that improve people’s lives. As our first Security Engineer, you will lead the charge to ensure CoinTracker has best in class security across our infrastructure and products.

You will:

  • Audit our system end-to-end to identify security risks
  • Design and implement changes to address security risks
  • Partner with engineers on projects and pull requests with security implications to improve security posture
  • Manage ongoing blackbox security testing with external vendors
  • Create or implement the security resources necessary to meet your goals within the cloud
  • Help with compliance efforts like SOC2
  • Help interview new engineers

You may enjoy this role if you:

  • Are passionate about building best-in-class security systems
  • Familiar with security testing practices and tools relevant for a modern software stack dealing with consumer data
  • Stay up to date with latest trends and security vulnerability reports and help us update our software as needed
  • Have experience scaling security engineering needs of a startup to a mid-size company
  • You come from a cloud native background

Sample projects you might work on:

  • Cross-platform OAuth authentication for the CoinTracker application
  • Application vulnerability scanning as part of the code release process
  • RBAC infrastructure access for employees
  • Security hardening of cloud estate
  • SIEM selection and implementation

Some of the skills we’re excited about

  • 5+ year of security engineering specific experience
  • 5+ years of software development experience
  • Productive, resourceful, and effective at problem-solving
  • Drawn to an early-stage, high-growth startup environment with less stability and more ambiguity
  • Strong fundamentals with a cloud platform like GCP or AWS
  • Interested in financial products and/or cryptocurrency
  • Able to work effectively in a remote setting and able to overlap with our core hours of 9 AM to 12 PM PT

Our engineering process includes

  • Code reviews
  • Continuous integration
  • Multiple daily automated deployments to production
  • Automated testing with >85% code coverage

Some of the technical challenges we face are

  • Lots of data — billions of data points to track transactions and market pair prices
  • Data structures & algorithms — automated transfer detection, cost basis tracking, tax optimization, and more. Your CS fundamentals finally come in handy!
  • Scalability — some cryptocurrency users, such as algorithmic traders, accumulate millions of transactions per year. CoinTracker needs to work seamlessly for those power crypto traders.
  • Blockchain — whether it’s running our own nodes, implementing xPub address generation and traversal, or parsing smart contracts to seamlessly support decentralized trading, we get our hands dirty with core blockchain technology
  • Technical complexity — integrating with hundreds of exchanges and blockchains and supporting thousands of cryptocurrencies means we have to methodically architect our software and build critical monitoring systems to deliver a robust and accurate platform
  • Product challenges — building a consumer finance product that works flawlessly for our global user base and through our partner integrations with top crypto exchanges, marketplaces, and tax-filing software

Our tech stack is

  • Web: HTML, Typescript, React, React Native, Styled-Components
  • Mobile: React Native, Expo, GraphQL
  • Backend: Python, Flask, GraphQL, Postgres, BigTable, Redis, Python RQ
  • Infrastructure: GCP, Terraform, PostgreSQL, Docker, Pub/Sub, Datadog, PagerDuty
  • You don’t need to know any or all of these, but be willing to learn!
Job Overview
Job alerts

Subscribe to our weekly job alerts below and never miss the latest jobs

Sign in

Sign Up

Forgotten Password

Job Quick Search