[Remote] Head of Security Engineering at Bastion

United States

Apply Now

$240,000 – $300,000Compensation

Expert & Leadership (9+ years), Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

FinTech, Stablecoins, BlockchainIndustries

Requirements

Experience setting up a security program before, including prioritization and setting high standards
Experience working with regulatory and compliance teams (highly preferred)
Experience with product security, detection, and response
Comfortable being hands-on with security engineering (implementing controls, building detection capabilities) and writing code
Ability to write policies that satisfy auditors
Comfortable balancing technical excellence with regulatory rigor

Responsibilities

Meet key stakeholders to understand business goals and risk appetite (Day 7)
Review current security posture, tooling, processes, and identified risks (Day 7)
Confirm incident response coverage and escalation paths (Day 7)
Deliver an initial readout with near-term priorities (Day 7)
Define Bastion’s security north star and success metrics in alignment with leadership (Day 15)
Establish an operating cadence (standups, intake, prioritization, communication loops) (Day 15)
Kick off 1-2 high-impact risk-reduction efforts (Day 15)
Identify key compliance and policy gaps (Day 15)
Partner with Platform and App teams to implement baseline engineering guardrails (Day 30)
Validate core detection and response workflows through a tabletop exercise (Day 30)
Publish a simple dashboard for key security KPIs (Day 30)
Launch lightweight enablement for engineers and security champions (Day 30)
Begin interviewing candidates for future team (Day 30)
Formalize security policies and governance rhythms with cross-functional partners (Day 90)
Ship at least one security improvement that measurably improves developer velocity or reduces friction (Day 90)
Demonstrate measurable risk reduction against agreed KPIs (Day 90)
Define the next two quarters of the security roadmap and resourcing plan (Day 90)
Run a resilience exercise and fold learnings into continuous improvement (Day 90)
Build and maintain a security program that meets regulatory standards
Own compliance and regulatory aspects of security

Skills

Key technologies and capabilities for this role

Security EngineeringAWSSecurity InfrastructureDetection and ResponseProduct SecurityComplianceRegulatory FrameworksGovernance

Questions & Answers

Common questions about this position

What is the salary range for the Head of Security Engineering role?

The salary range is $240K - $300K.

Is this position remote or does it require office presence?

The role is remote in the United States, with an advantage to being based or willing to relocate to NYC.

What skills and experience are required for this role?

Candidates should have experience setting up a security program, prioritizing work, setting high standards, working with regulatory and compliance teams, product security, detection and response, hands-on security engineering like implementing controls and building detection capabilities, and comfort writing both code and policies.

What is the company culture like at Bastion?

Bastion is a 32-person company at a critical growth stage where you can shape the security culture, with a focus on high decision velocity, hands-on leadership, collaboration with compliance and risk teams, and balancing technical excellence with regulatory rigor.

What makes a strong candidate for this Head of Security Engineering position?

Strong candidates can handle the outlined work in the first 7/15/30/90 days, including rapid orientation, reviewing security posture, defining success metrics, establishing operating cadence, and kicking off risk-reduction efforts, while being a player-coach who is hands-on with infrastructure and strategic program building.

Bastion

Web3 platform for digital interactions

About Bastion

Bastion provides a platform that helps businesses integrate web3 technology into their existing systems. This platform includes features like custodial wallets for managing digital assets, smart transaction routing to optimize transactions, and data analytics to gain insights from customer interactions. By using Bastion's services, organizations can enhance their digital capabilities without needing to develop complex solutions in-house. What sets Bastion apart from its competitors is its focus on compliance and its white-label approach, allowing businesses of all sizes to customize the platform to fit their needs. The goal of Bastion is to empower organizations to fully leverage digital interactions, both online and offline, in a rapidly changing digital environment.

New York City, New YorkHeadquarters

2023Year Founded

$24.3MTotal Funding

SEEDCompany Stage

Data & Analytics, Crypto & Web3Industries

11-50Employees

Benefits

Hybrid Work Options

Risks

Intensifying competition from web3 infrastructure providers threatens Bastion's market share.

Regulatory scrutiny on digital asset management may increase Bastion's compliance costs.

Rapid technological changes in blockchain require continuous innovation from Bastion.

Differentiation

Bastion offers a compliant, white-label platform for seamless web3 integration.

The platform includes custodial wallets, smart transaction routing, and data analytics.

Bastion serves diverse clients, from small businesses to large enterprises.

Upsides

Growing interest in white-label blockchain solutions boosts Bastion's market potential.

Rising demand for custodial wallets enhances Bastion's service appeal.

Enterprises increasingly adopt web3 technologies, benefiting Bastion's platform.

Land your dream remote job 3x faster with AI

Try Jobo Free