Security Engineer

Overview

CoinTracker makes cryptocurrency portfolio tracking and tax compliance simple. CoinTracker enables consumers and businesses to seamlessly track their cryptocurrency portfolio, investment performance, taxes, and more. We are a globally distributed team on a mission to enable everyone in the world to use crypto with peace of mind. Learn more about our mission, culture, and hiring process.

Some things were proud of

• ????? Building foundational tools in the cryptocurrency space
• ???? Over 1M tax forms generated
• ???? $80B+ in cryptocurrency is tracked on CoinTracker (~over 5% of the entire crypto market)
• ???? Partnered with Coinbase, H&R Block, Intuit TurboTax, MetaMask, OpenSea, Phantom, Solana, and Uniswap
• ????? Founders : Jon previously built TextNow (200M downloads), Chandan was previously a product manager at Google & Google[x]
• ???? $100M+ venture capital raised from Accel, General Catalyst, Y Combinator, Initialized Capital, Coinbase Ventures, Kraken Ventures, Intuit Ventures, 776 Ventures, Balaji Srinivasan, Claire Hughes Johnson, Gokul Rajaram, Serena Williams, Zach Perret
• ???? Awesome benefits

Your mission

Establish and scale CoinTrackers security foundation to meet the needs of our growing B2C, B2B, and B2G businesses.

Your one year outcomes

Define and implement the security roadmap : Identify short-term wins and establish the long-term foundation to scale CoinTrackers security posture

Establish core security foundations : Conduct a security gap assessment, implement baseline policies and controls, and lead third-party audits (e.g. SOC 2, pen test) to validate and strengthen our posture

Embed security into engineering workflows : Introduce secure development practices (e.g. threat modeling, code scanning, secrets management), and partner with teams to proactively identify and mitigate risks in our systems and architecture

Drive security operations : Define and operationalize security incident response processes, improve monitoring and detection capabilities, establish ongoing vulnerability management, and lead security postmortems to drive continuous improvements

What you will do

As CoinTrackers first Security Engineer, youll be hands-on in building the infrastructure, processes, and culture needed to protect our systems, data, and users.

Define and execute the security roadmap, balancing near-term wins with long-term investments across infrastructure, cloud, application security, and security operations

Conduct a security gap assessments and implement baseline controls, policies, and best practices

Lead key security initiatives including third-party audits (e.g. SOC 2, penetration testing), security certifications (ISO 27001), incident response readiness, and vulnerability management

Partner closely with engineering teams to embed security into SDLC from threat modeling to code scanning to secrets management

Foster a strong security culture across the company by driving awareness, education, and best practices

What we look for

Role-agnostic

Impact : Demonstrated ability to drive business impact

Mission alignment : Hungry and motivated about making progress towards our mission of Enabling everyone in the world to use crypto with peace of mind .

Trust : Say what you believe. Do what you say.

Communication : Able to clearly talk about the details and also zoom out to the bigger picture

Role-specific

8+ years of experience in security engineering or related technical roles, ideally in fast-paced startup or growth-stage environments

Deep understanding of core security domains including application security, infrastructure and cloud security, identity and access management, security operations and incident response

Hands-on experience implementing security measures and working directly with engineering and infrastructure teams

Experience with security frameworks like SOC 2, ISO 27001, NIST, and GDPR

Experience leading or supporting third-party audits, penetration testing, and internal risk assessments

Resourceful, pragmatic, and comfortable working in ambiguity able to move fast while building for the long term

U.S. citizen and U.S. resident

(Bonus) Familiarity with the unique risks and threat models in crypto or financial services

(Bonus) Security certifications such as CISSP and GIAC

The starting salary for this position is between $175,000 - $240,000 USD. Candidate's location does not impact the posted salary range. The actual compensation offered will be based on a variety of job-related factors including relevant skills, education, and experience. This position also includes equity in CoinTracker and benefits like medical, dental, vision, 401(k), life insurance, and PTO.