Senior Security Engineer (NYC / MIA)
Crossmint
Remote
USD 180k-210k / year + Equity
Senior Security Engineer (NYC / MIA)
About Crossmint
Crossmint is the leading enterprise-grade, all-in-one stablecoin and wallet infrastructure platform enabling fintechs and enterprises to integrate stablecoin rails and smart wallets with speed, compliance, and scale.
Backed by Ribbit Capital, Franklin Templeton, NYCA, First Round, and Lightspeed Faction, with $23.6M raised in 2025. Trusted by more than 40,000 clients including global leaders such as MoneyGram, WireX, Toku, and more, Crossmint provides embedded smart wallets, on/offramps, cross-chain stablecoin orchestration, tokenization, and other blockchain primitives through simple, developer-friendly APIs that integrate in minutes and scale to millions of users.
In January 2026, Crossmint secured MiCA authorization from Spain's CNMV, becoming one of a select few stablecoin infrastructure providers fully licensed to operate across all 27 EU member states and held to the same regulatory standards as traditional financial institutions. Crossmint also powers the Republic of the Marshall Islands' first digital UBI program, backs MoneyGram's new stablecoin cross-border experience launching in LATAM, and recently partnered with WireX to expand multichain stablecoin payment infrastructure to non-EVM networks like Stellar.
The future of finance is stablecoin-native. Crossmint makes it easy to get there.
Location
NYC or Miami. Hybrid office setting.
Type of Employment
Full-time
Salary range
180,000 - 210,000 USD
Note: We determine candidate levels through insights gained during the interview process.
About the role
We are seeking a Senior Security Engineer to own the operational execution of security at Crossmint as we continue to scale. The volume of security operations, compliance work, and engineering support requires dedicated ownership to maintain a strong security posture as the company grows.
This role is foundational. You will run the day-to-day security function, partnering closely with engineering, compliance, and external vendors to ensure our infrastructure, applications, and processes remain secure. This role enables security leadership to focus on strategy, automation, and long-term risk management while you ensure operational excellence and follow-through.
What You Will Do
Security Operations and Infrastructure
Own and operate cloud security across our cloud environments: AWS primarily, with some exposure to GCP, Vercel.
Design, maintain, and monitor engineering security controls including cloud IAM, logging, monitoring/alerting, and key management.
Secure our coding assets, including: CI/CD pipelines, GitHub Action environments, secrets management, and software supply chain.
Manage security-related access controls including privileged access, service accounts, credential rotation, and performing access reviews.
Application and Product Security
Perform secure code reviews and provide hands-on application security support to engineering teams.
Review authentication flows, payment logic, and API security with human judgment, not just automated scanners.
Partner with engineers to remediate vulnerabilities and embed security best practices into product development.
Coordinate our external security review program with our 3P security auditor firms.
Vulnerability and Incident Management
Own vulnerability management workflows including prioritization, remediation tracking, and verification.
Support incident response through internal triage, investigation, and remediation in collaboration with external 24/7 response partners.
Compliance and Audit Support
Support SOC 2 and other compliance efforts by collecting evidence, documenting controls, and maintaining audit-ready processes for engineering-security related controls.
Contribute to regulatory and compliance initiatives such as DORA, where applicable.
About you
Must Haves
4-8 years of experience as a security engineer. 3+ years of hands-on experience securing AWS environments or equivalent cloud, including IAM, Security Hub, CloudTrail, GuardDuty, and KMS.
Strong understanding of CI/CD security, including GitHub Actions, secrets scanning, and dependency management.
Experience with secure code review or application security fundamentals
Experience working with at least one compliance framework, preferably SOC 2, though ISO 27001 or similar is acceptable.
Highly organized with great attention to detail. You don’t drop balls.
Comfort operating in a fast-paced startup environment with ambiguity.
Ability to communicate security concepts clearly to non-technical stakeholders without creating friction.
Experience using AI-assisted tools such as Claude or GitHub Copilot for security automation.
Ability to work flexible hours if an incident arises
Nice to Haves
Fintech or payments industry experience.
Exposure to DORA or MiCA compliance requirements.
Familiarity with crypto or blockchain security considerations.
Please keep in mind: This is the full list of everything we’re looking for. You don’t need to check every single box to be a strong candidate, and having a good number of these would already indicate a solid fit for the role.
How to Succeed
A successful Senior Security Engineer at Crossmint will be able to:
Take a security issue from identification through remediation with minimal guidance.
Prioritize work based on risk and impact, not who is asking the loudest.
Document work clearly to support audits and long-term knowledge sharing.
Push back diplomatically when something is insecure while offering practical alternatives.
Unblock themselves by researching and validating solutions independently.
Know when to escalate issues versus handling them autonomously.
They should not require:
Hand-holding on basic cloud or security concepts.
Detailed instructions for routine tasks such as access reviews or credential rotation.
Constant check-ins to remain productive.
Why Join Crossmint?
This is an opportunity to have real ownership over the operational security foundation of a company building core infrastructure for the next generation of financial systems. You will work closely with strong engineering and compliance partners, tackle meaningful security problems, and help scale a platform trusted by thousands of customers worldwide.
Benefits
Extensive access to leading AI tools and subscriptions, with AI actively encouraged and integrated into daily workflows.
Stock options program.
We conduct two performance reviews annually. The first addresses performance ratings, bonuses, and promotions. The second encompasses these elements along with salary adjustments reflecting inflation and market conditions.
Unlimited, flexible PTO.
Flexible work schedule.
Company laptop and allowance for any necessary home equipment.
Daily stipend for commuting to the office.
Company-paid trips for annual off-sites and onsites.
Insurance covered by Crossmint.
401(k) Plan.
Our Principles
Results and delivery: Ship high quality work fast.
Build for the long term: Build scalable, secure, and reliable solutions. Use AI.
Extreme Ownership: Be an effective Directly Responsible Individual (DRI). Be proactive.
Be a team player: Be an effective and kind colleague providing credible challenge. Be present and reliable.
Talent research indicates that women are often less inclined than men to apply for a role unless they have experience in 100% of the listed skills. However, this list is only a guide. We welcome your application even if you feel you meet around 75% of the requirements. At Crossmint, we believe skills can be learned, and diversity makes us stronger.
We work to foster a respectful environment where each person can be their authentic self, free from harassment, racism, and any form of discrimination. We proudly uphold our commitment to diversity and inclusion as an equal opportunity employer, and this policy applies to all employment practices within our organization.
Please note that Crossmint never conducts AI-based interviews, and all of our processes include an initial video call with a team member. Crossmint will not request your personal identification documents or any payment at any point during your interview process. Please stay vigilant about potential fraud. If you receive an email that claims to be from Crossmint but ends with any domain other than @crossmint.com, @crossmint.io or @paella.dev, it is not from us. We own these three domains listed before, and they are the only legitimate ones.
Please let our Talent Team know if you need any assistance completing any forms, or participating in the process.
Who will be in contact with you
Our People Ops team will be joining you throughout the entirety of the interview and onboarding processes. Feel free to reach out if you need anything!
Adolfo Fernández - Recruitment & People Ops
Gloria Alogo - People Ops, Onboarding & Benefits
Jon Eichhorn - Head of HR
⚠️ Please note that these are the only members of our People Ops team. Please remain vigilant and watch out for impersonators.
Follow us on Linkedin and X to keep updated with our latest activity! 👣
- Locations
- Miami, New York City
- Remote status
- Hybrid
- Employment type
- Full-time