TRM Labs
Senior Software Engineer, Application Security
TRM Labs, San Francisco, California, United States, 94199
[Full Time] Senior Software Engineer, Application Security at TRM Labs (United States)Senior Software Engineer, Application Security
TRM Labs United StatesDate Posted: 31 Oct, 2022Work Location: San Francisco, United StatesSalary Offered: Not SpecifiedJob Type: Full TimeExperience Required: 6+ yearsRemote Work: YesVacancies: 1 availableAt TRM, we're on a mission to build a safer financial system for billions of people around the globe. Our next-generation platform, which combines threat intelligence with machine learning, enables financial institutions and governments to detect cryptocurrency fraud and financial crime on an unprecedented scale.The Security team is responsible for and committed to securing all things at TRM. From our customers to our code, and everything in between, the security team is involved in all aspects of the business. We are looking for an Application Security Engineer to build mission-critical infrastructure that ensures the highest levels of availability, performance, and application security at TRM for products as built and deployed. From designing the technical strategy to company-wide best practices and implementation, you’ll work closely with engineering and engineering leadership to ensure TRM’s products are safe and secure.Your responsibilities will include:Lead application security reviews and threat modeling, including secure code review, architectural design, and testingDevelop automated testing and mature our Secure SDLCOwn and perform application security vulnerability managementCoordinate penetration testing engagementsSupport software engineers and product teams by developing application security best practicesDevelop and maintain the bug bounty programBootstrap platform security initiatives that help protect TRM dataInspire a culture of security across the engineering organization by fostering security champions within engineering teams and coordinating secure code training.Some of the traits we value:Experience Red Teaming or penetration testing applications and infrastructureDeep experience with common software flaws (e.g., OWASP and CWE), testing methodologies (e.g., SAST, DAST, and SCA), and using common security tooling for testing.Professional experience with cloud providers (e.g., GCP and AWS), modern secure software development lifecycles, and best practices.Strong written and verbal communication skills.Security certifications are a plus.About TRMTRM Labs is a blockchain intelligence company that helps financial institutions, crypto businesses and government agencies detect and investigate crypto-related financial crime and fraud. Our products are trusted by leading companies including PayPal, Visa, FTX, Uniswap, Anchorage, and federal agencies such as the FBI and IRS. Every day, we tackle challenges in data engineering, data science, and threat intelligence to advance our mission to build a safer financial system for billions of people.To accomplish our mission, we have raised nearly $80M from JPMorgan Chase, Visa, Citi, PayPal, Block, Tiger Global and Bessemer. Our team is made up of world class experts from the FBI, U.S. Secret Service, US Treasury Department, McKinsey, Coinbase, and top-tier tech companies.TRM is a remote-first workplace, with hubs in San Francisco, Washington, DC and London. We are looking for people with grit, passion, and humility to join our global team.Our ValuesImpact Oriented Trailblazer
- We define high-impact targets through customer centricity, prioritization, and adaptability.Master Craftsperson
- We execute efficiently to achieve goals through good judgment, velocity, and grit.Inspiring Colleague
- We elevate team performance through integrity, apprenticeship, and positive energy.Our Employee BenefitsRemote-first work environment, with optional in-person officesRegular team off-sites and retreatsCompetitive salaries and stock optionsPremium health, dental, and vision insuranceFSA, HSA, and 401K programsLife & disability coveragePaid time for vacations, volunteering, sick leave, and generous parental leaveFitness, co-working, and home office reimbursementsProfessional learning and development stipendsWe encourage you to reach out even if your experience doesn't precisely match the job description. Do not worry about picking exactly the right job; we can always explore other options after starting the conversation. Your passion and interests will set you apart, especially if your background or career is unconventional. Join us!
#J-18808-Ljbffr
TRM Labs United StatesDate Posted: 31 Oct, 2022Work Location: San Francisco, United StatesSalary Offered: Not SpecifiedJob Type: Full TimeExperience Required: 6+ yearsRemote Work: YesVacancies: 1 availableAt TRM, we're on a mission to build a safer financial system for billions of people around the globe. Our next-generation platform, which combines threat intelligence with machine learning, enables financial institutions and governments to detect cryptocurrency fraud and financial crime on an unprecedented scale.The Security team is responsible for and committed to securing all things at TRM. From our customers to our code, and everything in between, the security team is involved in all aspects of the business. We are looking for an Application Security Engineer to build mission-critical infrastructure that ensures the highest levels of availability, performance, and application security at TRM for products as built and deployed. From designing the technical strategy to company-wide best practices and implementation, you’ll work closely with engineering and engineering leadership to ensure TRM’s products are safe and secure.Your responsibilities will include:Lead application security reviews and threat modeling, including secure code review, architectural design, and testingDevelop automated testing and mature our Secure SDLCOwn and perform application security vulnerability managementCoordinate penetration testing engagementsSupport software engineers and product teams by developing application security best practicesDevelop and maintain the bug bounty programBootstrap platform security initiatives that help protect TRM dataInspire a culture of security across the engineering organization by fostering security champions within engineering teams and coordinating secure code training.Some of the traits we value:Experience Red Teaming or penetration testing applications and infrastructureDeep experience with common software flaws (e.g., OWASP and CWE), testing methodologies (e.g., SAST, DAST, and SCA), and using common security tooling for testing.Professional experience with cloud providers (e.g., GCP and AWS), modern secure software development lifecycles, and best practices.Strong written and verbal communication skills.Security certifications are a plus.About TRMTRM Labs is a blockchain intelligence company that helps financial institutions, crypto businesses and government agencies detect and investigate crypto-related financial crime and fraud. Our products are trusted by leading companies including PayPal, Visa, FTX, Uniswap, Anchorage, and federal agencies such as the FBI and IRS. Every day, we tackle challenges in data engineering, data science, and threat intelligence to advance our mission to build a safer financial system for billions of people.To accomplish our mission, we have raised nearly $80M from JPMorgan Chase, Visa, Citi, PayPal, Block, Tiger Global and Bessemer. Our team is made up of world class experts from the FBI, U.S. Secret Service, US Treasury Department, McKinsey, Coinbase, and top-tier tech companies.TRM is a remote-first workplace, with hubs in San Francisco, Washington, DC and London. We are looking for people with grit, passion, and humility to join our global team.Our ValuesImpact Oriented Trailblazer
- We define high-impact targets through customer centricity, prioritization, and adaptability.Master Craftsperson
- We execute efficiently to achieve goals through good judgment, velocity, and grit.Inspiring Colleague
- We elevate team performance through integrity, apprenticeship, and positive energy.Our Employee BenefitsRemote-first work environment, with optional in-person officesRegular team off-sites and retreatsCompetitive salaries and stock optionsPremium health, dental, and vision insuranceFSA, HSA, and 401K programsLife & disability coveragePaid time for vacations, volunteering, sick leave, and generous parental leaveFitness, co-working, and home office reimbursementsProfessional learning and development stipendsWe encourage you to reach out even if your experience doesn't precisely match the job description. Do not worry about picking exactly the right job; we can always explore other options after starting the conversation. Your passion and interests will set you apart, especially if your background or career is unconventional. Join us!
#J-18808-Ljbffr