Staff Security Engineer, Product Security
Chainalysisabout 1 month ago
Responsibilities
- Lead Product Security across Chainalysis' SaaS offerings.
- Own the Unified Security Review process for new product launches and vendor evaluations.
- Drive Security Engineering Risk Management Framework for risk classification and remediation tracking.
- Manage the Vulnerability Disclosure Program and security bug reporting workflow.
- Drive SOC2 compliance-related security remediation across product engineering.
- Provide security review and guardrails for internal AI platforms and coding agents.
- Participate in a shared on-call rotation for high-severity production security incidents.
Requirements
- 8+ years of application security engineering experience.
- Strong production coding ability in Java, TypeScript/JavaScript, Python, or Go.
- Experience building security automation into CI/CD pipelines.
- Hands-on penetration testing of production SaaS applications.
- Experience with threat modeling, secure design reviews, and code analysis.
- Ability to identify and remediate common web application vulnerabilities.
- Experience securing internal AI/LLM platforms and coding agents.