PolySign & Standard Custody is hiring a

Web3 Principal Security Engineer

Principal Security Engineer

The PolySign Information Security team is looking for a Principal Security Engineer, reporting to the Chief Information Security Officer (CISO), to secure our platform. This is a hands-on leadership role for an experienced professional to build a highly advanced digital asset platform at a well-funded, fast-growing organization.

Our company mission is to build products to increase the adoption of digital assets. Founded in 2017, PolySign has luminaries in both the cryptocurrency and financial services spaces working to solve the biggest problems in the industry.

What You’ll Do

• own the overall security of the PolySign platform
• work closely every day with engineering and product teams on all security aspects of the platform...architecture, design, and implementation
• provide expert guidance in cryptography and key management for engineers
• design and architect distributed systems
• engage in extensive threat modeling, lead security reviews of both architecture and code, and organize testing and mitigation
• document the security of the system for both internal and external audiences
• establish and enhance security protocols that protect systems on an ongoing basis
• shape the engineering culture, providing training on security topics and skills

Who You Are

• have a deep sense of ownership with a strong commitment to deliver exceptional work
• natural collaborator who seeks input and provides opinions with humility and empathy
• excellent influencing skills
• thrive in a startup environment...versatile and independent
• bring clarity to complex problems and deliver elegant solutions
• write exceptional documentation...impeccable attention to detail
• prioritize learning and development
• driven to build world-class products in the digital assets space

Essential Qualifications

• 5+ years hands-on professional experience with security engineering and architecture
• advanced skill set in cryptography and blockchains
• command of industry best practices and frameworks (eg, ISO2700x, NIST, CIS, CSA)
• performed secure code reviews, threat modeling, and security testing
• extensive hands-on security engineering/architecture experience with:
• cloud providers, particularly AWS, and containers (eg, Kubernetes/EKS)
• HSMs and certificate management
• mobile (iOS and Android)

Preferred Qualifications

• familiarity with rust, python, javascript, iaas tools (eg, terraform, yaml)
• experience with regulated organizations and assessment frameworks (eg, SOC/SSAE)
• policy development
• team management
• CISSP or related certification

Apply Now: