Senior Security Engineer

Company: Gauntlet

Location: Remote (NA)

Employment Type: Full-time

Compensation: $180,000–$210,000 USD yearly, plus additional On Target Earnings potential by level and equity

About Gauntlet

Gauntlet builds the financial systems of the future. While much of onchain finance is focused on point solutions, we operate across the entire stack to offer best-in-class vault products. We serve over $1.5B in client TVL across some of the largest fintechs/neobanks, protocols, exchanges, and capital allocators in crypto — and, increasingly, traditional asset management. Our team brings together traditional finance and crypto-native expertise to deliver durable, sophisticated products for institutional clients moving onchain.

About the Role

Join Gauntlet as a Senior Security Engineer, partnering with the Head of Security to build, operate and scale our security program. You'll work at the intersection of capital, risk and technology: securing the systems that power some of the largest and most sophisticated activities in DeFi. You'll own security projects across product, infrastructure and operations, designing controls, automation and detection capabilities that can withstand one of the most adversarial environments in software: billions of dollars in assets on-chain on public blockchains.

Responsibilities

• Threat model new product features and integrations and harden systems with effective controls.
• Operate and evolve the application security toolchain (SAST, dependency and supply-chain checks, secrets scanning) and keep it high-signal for developers.
• Own day-to-day security operations across the detection stack (EDR, SIEM, on-chain monitoring, identity, cloud): triage what fires, resolve what matters, and reduce noise.
• Triage vulnerability and bug-bounty findings by real exposure, drive remediation, and support incident response end to end.
• Take security tooling and projects from evaluation through org-wide rollout, collaborating across engineering, infra and other teams.
• Automate repetitive, judgment-light security work with AI: vulnerability and AppSec workflows, access reviews, SOC 2 and audit evidence collection, vendor due diligence, and recurring reporting.
• Build reusable AI components, Claude skills, and agents that engineering and other functions can adopt.

Requirements

• 5+ years in hands-on security engineering spanning product or application security and security operations.
• Track record of technical security assessments of software and systems, including system hardening, security policy analysis and implementing effective controls.
• An adversarial mindset: you think like an attacker and pressure-test assumptions, including your own.
• Proficiency in Python, TypeScript, or JavaScript, working with Claude Code, Codex or similar AI tools.
• Hands-on experience applying AI and LLMs to automation and building reusable tooling or components that other engineers adopted.
• Experience owning security projects end to end, from vendor selection through org-wide rollout, across multiple teams.
• Experience securing high-value or high-throughput transaction systems.
• Clear communication: you explain risk plainly and drive findings to closure.

Bonus

• Crypto/blockchain security experience.

Benefits

• Remote first — work from anywhere in the US & Canada
• Regular in-person company retreats and cross-country office visit perk
• 100% paid medical, dental and vision premiums for employees
• $1,000 WFH stipend
• Monthly reimbursement for home internet, phone, and cellular data
• Unlimited vacation
• 100% paid parental leave of 12 weeks
• Fertility benefits
• Opportunity for incentive compensation

Note

At this time, hiring is reserved for potential employees able to work within the contiguous United States and Canada. Alternative accommodations can be noted in your application.