Gauntlet builds the financial systems of the future. As a Senior Security Engineer, you will partner with the Head of Security to build, operate, and scale the security program, focusing on securing systems in DeFi and managing security projects across various domains.
Responsibilities:
- Threat model new product features and integrations and harden systems with effective controls
- Operate and evolve the application security toolchain and keep it high-signal for developers
- Own day-to-day security operations across the detection stack (EDR, SIEM, on-chain monitoring, identity, cloud): triage what fires, resolve what matters, and reduce noise
- Triage vulnerability and bug-bounty findings by real exposure, drive remediation, and support incident response end to end
- Take security tooling and projects from evaluation through org-wide rollout, collaborating across engineering, infra and other teams
- Automate repetitive, judgment-light security work with AI: vulnerability and AppSec workflows, access reviews, SOC 2 and audit evidence collection, vendor due diligence, and recurring reporting
- Build reusable AI components, Claude skills, and agents that engineering and other functions can adopt
Requirements:
- 5+ years in hands-on security engineering spanning product or application security and security operations
- Track record of technical security assessments of software and systems, including system hardening, security policy analysis and implementing effective controls
- An adversarial mindset: you think like an attacker and pressure-test assumptions, including your own
- Proficiency in Python, TypeScript, or JavaScript, working with Claude Code, Codex or similar AI tools
- Hands-on experience applying AI and LLMs to automation and building reusable tooling or components that other engineers adopted
- Experience owning security projects end to end, from vendor selection through org-wide rollout, across multiple teams
- Experience securing high-value or high-throughput transaction systems
- Clear communication: you explain risk plainly and drive findings to closure
- Crypto/blockchain security experience