Full-Time

Principal Security Engineer

Threat and Vulnerability Management

Posted on 5/28/2024

Circle

Circle

1,001-5,000 employees

Provides regulated digital currency USDC

Financial Services
Crypto & Web3

Senior, Expert

Remote in UK

Required Skills
Bash
Python
JavaScript
Git
SQL
AWS
JIRA
Terraform
Development Operations (DevOps)
Google Cloud Platform
Requirements
  • Consultative and flexible approach to partner closely with engineering and technology teams
  • Expertise with Cloud vulnerability scanning solutions like Wiz, Prisma Cloud, Qualys, or Amazon Inspector
  • Hands-on technical experience with developing, deploying, and integrating vulnerability scanning solutions with technologies such as Terraform, Github, Jira, Slack, and others, in the context of a mid to large Enterprise
  • Hands-on coding/scripting experience with languages such as Python, SQL, Javascript, bash, or other relevant languages
  • Expertise with Cloud Infrastructure in AWS and GCP
  • Extensive knowledge of containerization, orchestration, and cloud scale solutions
  • Expertise with CICD within the SDLC process
  • Expertise with Slack, Apple MacOS, and GSuite
  • Familiarity with CVSS, EPSS, threat intelligence, performing risk analysis, and threat modeling
  • Familiarity with blockchain/web3 development is preferred
  • Enthusiasm for automation, scalable and reproducible security practices
  • Self-motivated and creative problem-solver able to work independently
  • Proficiency in managing multiple competing priorities and use good judgment to establish order or priorities on the fly for themselves and their team
  • Ability to influence and expediently resolve issues and achieve organizational objectives
  • The ability to design and operate controls that are easy to test and audit
  • Advanced degree in computer science, or related fields strongly preferred
  • Strong ability to work collaboratively across teams during high-stress situations
  • An understanding of standards such as ISO 27001/27002 and the NIST Cybersecurity Framework desirable
  • 8+ years of total experience in cybersecurity with at least 2+ years as a principal engineer
  • Amazon certifications for Solutions Architect, Devops Engineer, and/or Security are preferred
  • Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), and/or Certified Ethical Hacker (CEH) certifications are a plus
Responsibilities
  • Test web applications and underlying systems for vulnerabilities using both tools and manual techniques; manage the remediation of findings through resolution
  • Recommend code changes to eliminate vulnerabilities
  • Automate security tests within the CI/CD pipeline
  • Research vulnerabilities specific to the financial industry & blockchain technologies and incorporate this knowledge in Circle’s security practices
  • Serve as an escalation point to investigate threats and identify vulnerabilities
  • Investigate vulnerability reports related to Circle products and systems
  • Influence the continuous improvement of the Threat and Vulnerability Management program
  • Support other security team projects such as threat modeling, vulnerability scanning, and audits

Circle offers USDC, a regulated digital currency that enables near-instant, near-zero cost settlements and fully programmable capabilities, facilitating over $1.4 trillion in transactions. The main technologies/methods used include public blockchains for payments and financial applications.

Company Stage

Seed

Total Funding

$1.2B

Headquarters

null, null

Founded

2013

Growth & Insights
Headcount

6 month growth

1%

1 year growth

5%

2 year growth

67%

Benefits

Paid time off - We offer flexible paid time off — take what you need as long as it works with you and your team, and all Circle employees get mobile phone and home office reimbursements.

Health coverage - No matter where you live, we offer a market competitive suite of benefits. Enroll in health, dental, vision, disability, and life insurances, and Circle covers some or all of the premiums.

Invested in your future - All U.S. full-time and part-time employees enjoy 401(k) and pensions (with 4% company match if you contribute 5% or more), and share Circle’s success via company equity awards.

Learning & development - Your individual growth and development is important to us and we provide the resources to help you grow your career while at Circle.

INACTIVE