Security Engineer at ether.fi

<p style="min-height:1.5em"></p><p style="min-height:1.5em"><strong>About the Role:</strong></p><p style="min-height:1.5em">We're looking for a Security Engineer who is equally at home hardening a CI/CD pipeline, reviewing a change to the authentication system on the backend, and triaging a bug bounty submission before lunch.This is a hands-on, builder-first role — not a governance checkbox. You'll own security operations end-to-end, embedded directly into the engineering team and working closely with infrastructure, protocol and platform.</p><p style="min-height:1.5em">If you treat threat modeling as a design conversation and not a compliance exercise, you're our kind of person.<strong> You should only apply for this role if you are ready to come into the office every day and work in person with our team!</strong></p><p style="min-height:1.5em"></p><p style="min-height:1.5em"><strong>What You'll Do:</strong></p><p style="min-height:1.5em"><strong>Security Operations</strong></p><p style="min-height:1.5em">Own day-to-day security operations: monitoring, alerting, triage, and response</p><p style="min-height:1.5em">Manage and monitor endpoint security via an EDR system — tune detections, investigate alerts, and drive incidents to resolution</p><p style="min-height:1.5em">Lead identity lifecycle management, including employee onboarding and off boarding (access provisioning, key rotation, deprovisioning)</p><p style="min-height:1.5em"></p><p style="min-height:1.5em"><strong>Bug Bounty &amp; Vulnerability Management</strong></p><p style="min-height:1.5em">Be the primary owner of our ImmuneFi program — triaging, reproducing, and responding to incoming submissions daily</p><p style="min-height:1.5em">Prioritize and track vulnerabilities through to remediation in close collaboration with protocol and engineering teams</p><p style="min-height:1.5em">Develop internal tooling and processes to make the bounty workflow faster and more consistent</p><p style="min-height:1.5em"></p><p style="min-height:1.5em"><strong>DevSecOps &amp; Pipeline Hardening</strong></p><p style="min-height:1.5em">Audit and harden CI/CD pipelines — secrets management, supply chain integrity, SAST/DAST integration, build provenance</p><p style="min-height:1.5em">Own dependency security: identify and remediate vulnerable packages across repositories (yes, including the npm dependency hell)</p><p style="min-height:1.5em">Establish and enforce security standards across the SDLC</p><p style="min-height:1.5em"></p><p style="min-height:1.5em"><strong>Infrastructure Security</strong></p><p style="min-height:1.5em">Partner with the infrastructure team to review and harden cloud environments (access controls, network segmentation, least privilege, logging)</p><p style="min-height:1.5em">Contribute to threat modeling for new systems and architectural changes</p><p style="min-height:1.5em"></p><p style="min-height:1.5em"></p><p style="min-height:1.5em">Drive implementation of security tooling a