Senior Staff Security Engineer, Treasury
Ripple provides crypto and blockchain solutions for enterprises, enabling global financial entities to move, manage, and tokenize value. They focus on improving existing financial systems through partnerships and regulatory compliance, with products used in over 50 countries.
About Ripple
Ripple is an enterprise blockchain and crypto solutions company that aims to enable the world to move value as seamlessly as information moves today. Their mission is to build breakthrough crypto solutions for a world without economic borders. Using blockchain technology, Ripple facilitates global financial institutions, businesses, governments, and developers to move, manage, and tokenize value, thereby unlocking greater economic opportunity. The company works within existing financial systems to improve them, partnering with customers to streamline infrastructure and collaborating with regulators to ensure solutions are secure and compliant. Ripple's products are in commercial use by hundreds of customers across more than 50 countries, helping them expand into new markets, access liquidity solutions, and generate crypto-enabled revenue streams. They also support developers by providing tools for building on the XRP Ledger, a fast and sustainable public blockchain. Ripple’s payments, custody and stablecoin solutions empower financial institutions to integrate blockchain and digital assets into their business in a simple, secure, compliant way—all in one place. From instant payments to asset tokenization, blockchain and crypto are happening right now, across the world. It’s happening to suppliers, to retailers, to exchanges, to currencies, to sectors, to industries, to markets, and to global businesses. And it’s happening with Ripple.
Skills
About the Role
You will be one of Ripple's most senior technical security practitioners, working at the intersection of application security, cloud infrastructure security, and secure software delivery. You will serve as the dedicated security engineering partner for Ripple Treasury, partnering with Product and Engineering teams to drive secure design, threat modeling, vulnerability management, and cloud security architecture. You'll lead architecture reviews, own the secure software development lifecycle for your product surface, drive cloud security across Azure and AWS, and build a Security Champions model to extend your reach across the Treasury engineering organization. You will also mentor and develop other Security Engineers, raising the technical bar across the team.
Requirements
- 10+ years of Security Engineering experience, including hands-on work in Product Security and Infrastructure Security
- Expert-level product security skills including threat modeling using STRIDE or equivalent, security architecture review, OWASP Top 10 and beyond, API security, authentication and authorization design, and secure SDLC development
- Deep expertise in securing cloud environments across Azure, AWS, and/or GCP, covering IAM architecture, network security, secrets management, container and Kubernetes security, and infrastructure as code security
- Hands-on experience building and operating DevSecOps tooling, including static analysis, dynamic analysis, software composition analysis, secrets scanning, container scanning, and CI/CD pipeline security integration
- Strong software engineering skills in Python, Go, or equivalent, with the ability to build security tooling, automate controls, and integrate security into engineering workflows
- Experience with cryptographic principles and key management, including HSMs, MPC, PKI, and key rotation
- Background in FinTech, crypto, blockchain, or high-stakes financial environments is a strong plus
Responsibilities
- Serve as the dedicated Security Engineering partner for Ripple Treasury BU, owning the security posture of the Treasury solution and infrastructure environment from assessment through remediation and ongoing maturity improvement
- Lead threat modeling and security architecture reviews across Treasury offerings
- Own the secure software development lifecycle for your product surface area, defining security guardrails, CI/CD integrations, and developer guidance
- Drive the cloud security architecture for Treasury across Azure and AWS, including IAM, network segmentation, encryption, zero trust controls, Kubernetes traffic policies, and DDoS and WAF strategy
- Partner with GRC to ensure Treasury meets its compliance obligations across SOC 2, ISO 27001, and applicable financial regulatory frameworks
- Own vulnerability discovery via security assessments, penetration testing and bug bounty, driving findings through triage, prioritization, remediation, and validation
- Build and scale a Security Champions model within Treasury Engineering
- Influence engineering architecture decisions at the senior level, participating in design reviews and architectural assessments
- Mentor and develop Security Engineers, raising the technical bar through threat model walkthroughs, design discussions, and structured knowledge sharing
- Stay ahead of the threat landscape for FinTech, crypto, and enterprise treasury systems, translating emerging attack techniques into concrete defensive improvements
Benefits
- Competitive benefits that cover physical and mental healthcare, retirement, family forming, and family support
- Employee giving match
- Mobile phone stipend
- R&R days so you can rest and recharge
- Generous wellness reimbursement and weekly onsite & virtual programming
- Generous vacation policy
- Industry-leading parental leave policies and family planning benefits
- Catered lunches, fully-stocked kitchens with premium snacks/beverages
- Team offsites, team bonding activities, happy hours and other events
