Senior Application Security Engineer at TRM Labs

United States

Apply Now
TRM Labs Logo
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Blockchain, CybersecurityIndustries

Requirements

  • Minimum 8 years of experience in Software Development and testing
  • BS (or equivalent) in Computer Science, Computer Engineering, or related field
  • Proficiency in software development languages: Python, NodeJS, React
  • Strong understanding of encryption, authentication, and authorization protocols
  • Deep experience with common software flaws (e.g., OWASP and CWE), testing methodologies, and using common security tooling for testing
  • Professional experience with open source, commercial, or native security solutions for cloud providers such as GCP and AWS
  • Experience with modern secure software development lifecycles, threat modeling, and best practices
  • Experience with conducting efficient and comprehensive code security reviews on a daily or weekly basis
  • Experience triaging and remediating vulnerabilities in software packages or libraries
  • Experience with Software Security tools such as Github advanced security or other SAST, DAST, and SCA tools
  • Experience with Web application testing frameworks such as BurpSuite, OWASP ZAP, etc
  • Experience with Threat modeling tools such as OWASP Threat Dragon, etc
  • Experience working in a previous agile-based software development role
  • Experience Red Teaming or penetration testing applications and infrastructure
  • Professional experience with cloud providers (e.g., GCP and AWS), modern secure software development lifecycles, and best practices
  • Strong written and verbal communication skills
  • Security certifications such as OSCP, CEH, GWAPT are a plus
  • Familiarity with security frameworks (e.g., NIST SP 800-171 SSDF) is a plus

Responsibilities

  • Lead application security reviews and threat modeling, including secure code review, architectural design, and testing
  • Develop automated testing and mature our Secure SDLC
  • Own and perform application security vulnerability management
  • Coordinate penetration testing engagements
  • Support software engineers and product teams by developing application security best practices
  • Develop and maintain the bug bounty program
  • Bootstrap platform security initiatives that help protect TRM data
  • Inspire a culture of security across the engineering organization by fostering security champions within engineering teams and coordinating secure code training

Skills

Threat Modeling
Secure Code Review
Secure SDLC
Vulnerability Management
Penetration Testing
Bug Bounty
Automated Testing
Platform Security

TRM Labs

Blockchain intelligence for financial crime detection

Website

About TRM Labs

TRM Labs focuses on blockchain intelligence to assist financial institutions, cryptocurrency businesses, and government agencies in identifying and investigating financial crimes and fraud related to cryptocurrencies. The company utilizes advanced data engineering, data science, and threat intelligence to provide tools and insights that help clients combat illicit activities in the crypto sector. TRM Labs serves a wide range of clients, including banks and regulatory bodies, and generates revenue through subscription-based services and customized solutions. Its goal is to enhance the security and integrity of the global financial system by offering comprehensive blockchain analytics and investigative capabilities.

San Francisco, CaliforniaHeadquarters
2018Year Founded
$146MTotal Funding
SERIES_BCompany Stage
Data & Analytics, FintechIndustries
201-500Employees

Benefits

Remote Work Options
Annual Company Offsite
Professional Development Budget

Risks

Increased scrutiny in the UK could affect operations and partnerships in the region.
Collaboration with Tether and TRON may expose TRM Labs to reputational risks.
Cyberattack vulnerabilities in crypto exchanges could impact TRM Labs' clients.

Differentiation

TRM Labs specializes in blockchain intelligence for financial crime detection and investigation.
The company collaborates with major firms like PayPal, Visa, and government agencies.
TRM Labs offers subscription-based services and customized solutions for diverse client needs.

Upsides

Partnership with Four Inc. could increase government contracts in U.S. public sector.
Success in freezing $100 million in assets highlights effectiveness in public-private partnerships.
Collaboration with DeFi platforms like 1inch enhances influence in decentralized finance.

Related Jobs

United States
Remote iconRemote

Senior Application Security Engineer

M&T Bank
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
United States
Remote iconRemote

Application Security Lead

Accurate Background
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
Toronto +3 more
Remote iconRemote

Senior Software Engineer, Secure Agents

Cohere
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States
Remote iconRemote

Software Engineer, Security

Render
$193,000 - $265,000/year
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
United States +4 more
Remote iconRemote

Security Engineer, Product Security

Chainlink Labs
Salary not specified
  • Employment type iconFull Time
  • Experience level iconMid-level (3 to 4 years), Senior (5 to 8 years)

Land your dream remote job 3x faster with AI

Try Jobo Free