Security Application Engineer

Bitgo
Palo Alto, US
On-site

Who this role is best for

Aimed at mid-level security engineers with hands-on cloud defense experience who thrive in onsite collaborative environments.

Best fit for

  • Engineers with 8+ years scaling security programs in high-growth startups.
    — “8+ years of experience engineering and scaling end-to-end security programs for high-growth startups.
  • Candidates proficient in AWS infrastructure hardening and Kubernetes security.
    — “Hands-on mastery of container security, Kubernetes orchestration, and AWS infrastructure hardening.
  • Security professionals passionate about blockchain-adjacent technologies.
    — “A passion for securing blockchain-adjacent technologies.

Things to consider

  • Full-time onsite requirement in Palo Alto with no remote flexibility mentioned.
    — “This role will require being full-time onsite at our Palo Alto office
  • Expectation to secure AI-integrated applications with specific validation protocols.
    — “Secure next-generation AI-integrated applications by establishing input/output validation protocols

How to stand out

  • Demonstrate concrete examples of integrating security automation into CI/CD pipelines.
    — “Integrate security automation into CI/CD pipelines utilizing SAST, DAST
  • Highlight hands-on experience with SOC 2 Type II and GDPR compliance implementations.
    — “Practical knowledge of implementing technical controls to meet SOC 2 Type II and GDPR compliance standards.
  • Showcase deep expertise in securing AI/ML lifecycles beyond basic knowledge.
    — “Deep expertise in securing AI/ML lifecycles, MLOps frameworks
Pace · SteadyCollaboration · HighAutonomy · MediumDecision Impact · CompanyLevel · Senior

Derived from job-description analysis by Serendipath's career intelligence engine.

What success looks like

  • securing high-growth FinTech and Web3 platforms
  • integrating security into CI/CD pipelines
  • implementing SOC 2 Type II and GDPR compliance
Typical background
engineering backgroundsecurity experience in FinTech or Web3

Skills & requirements

Required

Cloud SecurityThreat ModelingEncryptionIncident ResponseCompliance

Preferred

AI SecurityBlockchain Security

Stack & domain

PythonJavaTerraformKubernetesAWSSoc 2 Type IiGDPRFintechWeb3Digital Asset Ecosystems

About the role

Original posting from Bitgo via Greenhouse

BitGo is the leading infrastructure provider of digital asset solutions, delivering custody, wallets, staking, trading, financing, and settlement services from regulated cold storage. Since our founding in 2013, we have focused on enabling our clients to securely navigate the digital asset space. With a global presence and multiple Trust companies, BitGo serves thousands of institutions, including many of the industry's top brands, exchanges, and platforms, and millions of retail investors worldwide. As the operational backbone of the digital economy, BitGo handles a significant portion of Bitcoin network transactions and is the largest independent digital asset custodian, and staking provider, in the world. For more information, visit www.bitgo.com.

This role will require being full-time onsite at our Palo Alto office to support collaborative team dynamics and innovative problem-solving.

We are seeking a Senior Application Security Engineer to lead the technical execution of our product security strategy. This role focuses on securing high-growth FinTech and Web3 digital asset platforms by building end-to-end security programs and integrating automated security controls directly into the software development lifecycle. The ideal candidate has a deep engineering background, hands-on experience defending complex cloud environments, and a passion for securing blockchain-adjacent technologies.

Key Responsibilities:

Lead comprehensive threat modeling and product security architecture reviews in collaboration with cross-functional teams.

Integrate security automation into CI/CD pipelines utilizing SAST, DAST, and continuous vulnerability management tools.

Architect and implement secure-by-default cloud infrastructure on AWS using Terraform and Kubernetes.

Design and deploy robust encryption services, key management systems (KMS), and advanced data protection controls across distributed environments.

Oversee operational security initiatives including corporate bug bounty programs, incident response workflows, and regular penetration testing engagements.

Secure next-generation AI-integrated applications by establishing input/output validation protocols and LLM guardrails.

Engineer proactive defenses to safeguard platform infrastructure against sophisticated adversaries and nation-state-level threats.

Qualifications:

8+ years of experience engineering and scaling end-to-end security programs for high-growth startups.

Proven background securing platforms within FinTech, Web3, and digital asset ecosystems.

Strong engineering proficiency in distributed systems, microservices, and languages such as Python or Java.

Hands-on mastery of container security, Kubernetes orchestration, and AWS infrastructure hardening.

Practical knowledge of implementing technical controls to meet SOC 2 Type II and GDPR compliance standards.

Deep expertise in securing AI/ML lifecycles, MLOps frameworks, and agentic AI platforms.

Bachelor’s degree in Computer Science, Engineering, or an equivalent technical field.

Why Join BitGo?

Disrupting an industry takes vision, innovation, passion, technical chops, drive to deliver, collaboration, and execution. Join a team of great people who strive for excellence and personify our corporate values of ownership, craftsmanship, and open communication. We are looking for new colleagues who bring innovative ways of thinking and problem solving, and who want risks to be part of the team that changes the world’s financial markets.

Pay Transparency Notice: Depending upon your leveling and location, the compensation for this role averages between $200,000 - $245,000 USD base salary. Equity, an annual performance bonus and the benefits outlined below are also a part of this role's package. 

Here are some of the benefits* of working at BitGo:

Competitive base salary, bonus and stock options

100% company paid health insurance for employee, partner and dependents

Up to 4% 401k company match

Paid parental leave, Paid vacation

Free commuter/parking pass; near Caltrain

Free custom lunches, dinners and snacks 

Computer equipment and workplace furniture to suit your needs

Great colleagues and inspiring startup environment

*Benefits may vary based on location 

Cryptocurrencies are the most disruptive change the financial services industry has seen in years. Join us and you’ll be able to look back and say you were part of the team that transformed investing.

Pay Transparency Notice: Depending upon your leveling and location, the compensation for this role averages between $190,000 - $235,000 USD base salary. Equity, an annual performance bonus and the benefits outlined below are also a part of this role's package. 

Source: Bitgo careers (Greenhouse)

Similar roles