Senior Security Engineer

Senior Security Engineer New York Engineering / Full Time / Remote apply for this job Join Gauntlet as a Senior Security Engineer, partnering with the Head of Security to build, operate and scale our security program. You'll work at the intersection of capital, risk and technology: securing the systems that power some of the largest and most sophisticated activities in DeFi. You'll own security projects across product, infrastructure and operations, designing controls, automation and detection capabilities that can withstand one of the most adversarial environments in software: billions of dollars in assets on-chain on public blockchains. About Gauntlet Gauntlet builds the financial systems of the future. While much of onchain finance is focused on point solutions, we operate across the entire stack to offer best-in-class vault products. Today we serve over $1.5B in client TVL across some of the largest fintechs/neobanks, protocols, exchanges, and capital allocators in crypto — and, increasingly, traditional asset management. Our team brings together traditional finance and crypto-native expertise to deliver durable, sophisticated products for institutional clients moving onchain. What you'll do; Threat model new product features and integrations and harden systems with effective controls. Operate and evolve the application security toolchain (SAST, dependency and supply-chain checks, secrets scanning) and keep it high-signal for developers. Own day-to-day security operations across the detection stack (EDR, SIEM, on-chain monitoring, identity, cloud): triage what fires, resolve what matters, and reduce noise. Triage vulnerability and bug-bounty findings by real exposure, drive remediation, and support incident response end to end. Take security tooling and projects from evaluation through org-wide rollout, collaborating across engineering, infra and other teams. Automate repetitive, judgment-light security work with AI: vulnerability and AppSec workflows, access reviews, SOC 2 and audit evidence collection, vendor due diligence, and recurring reporting. Build reusable AI components, Claude skills, and agents that engineering and other functions can adopt. What you Bring; 5+ years in hands-on security engineering spanning product or application security and security operations. Track record of technical security assessments of software and systems, including system hardening, security policy analysis and implementing effective controls. An adversarial mindset: you think like an attacker and pressure-test assumptions, including your own. Proficiency in Python, TypeScript, or JavaScript, working with Claude Code, Codex or similar AI tools. Hands-on experience applying AI and LLMs to automation and building reusable tooling or components that other engineers adopted. Experience owning security projects end to end, from vendor selection through org-wide rollout, across multiple teams. Experience securing high-value or high-throughput transaction systems. Clear communication: you explain risk plainly and drive findings to closure. Bonus Points Crypto/blockchain security experience. Benefits & Perks; Remote first - work from anywhere in the US & CAN! Regular in-person company retreats and cross-country "office visit" perk 100% paid medical, dental and vision premiums for employees $1,000 WFH stipend Monthly reimbursement for home internet, phone, and cellular data Unlimited vacation 100% paid parental leave of 12 weeks Fertility benefits Opportunity for incentive compensation   Please note at this time our hiring is reserved for potential employees who are able to work within the contiguous United States and Canada. Should you need alternative accommodations, please note that in your application.   The national pay range for this role is $180,000 - $210,000 base plus additional On Target Earnings potential by level and equity in the company. Our salary ranges are based on...