Senior Software Engineer (Security Implementation)

Impact : 

At FalconX, you’ll help create a more open financial system. In building trading, credit and custody infrastructure, we are enabling thousands more institutions to enter the market and support a more open and accessible financial system. The world’s largest financial institutions from Wall Street to Silicon Valley will turn to you for products that provide unparalleled seamless, efficient and secure access to the cryptocurrency sector.

FalconX is hiring a Senior Software Engineer focused on our core platform stack to help introduce a new, in-demand product line for the company that integrates seamlessly with our proprietary, best-in-class Prime Brokerage platform. We are looking for an experienced Software Engineer with a background in building scalable, distributed systems as well as a strong understanding of blockchain, wallets, and platforms to build upon our vision of an open financial system.

As a Senior Software Engineer (Security Implementation), you’ll:

• Design, develop, and implement security solutions to protect our web applications, APIs, and cloud infrastructure.
• Work closely with cross-functional teams, including software engineers, product managers, and DevOps to integrate security into the entire development lifecycle.
• Advocate for security best practices, educating and guiding teams on secure coding, vulnerability management, and threat mitigation strategies.
• Identify, analyze, and remediate security vulnerabilities, ensuring compliance with security standards and regulations.
• Tackle complex security challenges, especially those involving application-layer threats and emerging attack vectors.
• Develop tools and scripts for security automation, vulnerability scanning, and incident response.
• Write secure code following industry standards for maintainability, performance, and security, focusing on web and cloud-based environments.

Job Requirements:

• A bachelor’s / master’s degree in Computer Science, Information Security or a related field.
• 5+ years of experience in application security or software engineering with a focus on security. Proficiency in Python / Golang is required.
• Strong experience with AWS, Terraform, GCP, Azure, Wiz, Crowdstrike etc.
• Expertise in identifying and mitigating web application vulnerabilities (e.g., SQL injection, XSS, CSRF).
• Experience with SIEM and Security tools / platforms such as SAST, DAST, dependency scanning, and threat modeling.
• Strong understanding of authentication and authorization frameworks (e.g., OAuth2, SAML, JWT).
• Excellent communication skills, with a collaborative mindset and attention to detail.

Bonus Criteria:

• Hands-on experience with implementing security in CI/CD pipelines and DevSecOps practices.
• Knowledge of industry standards and regulations such as OWASP, NIST, PCI-DSS, and GDPR.
• Experience in conducting and leading security code reviews and penetration testing.
• Familiarity with secure coding practices for microservices and serverless architectures.
• Background in cryptography and encryption algorithms.
• Experience with early-stage product startups, where you can define and shape the security posture from the ground up.