×
Register Here to Apply for Jobs or Post Jobs. X

Senior Product Security Engineer​/Architect

Job in 1001, Lausanne, Canton de Vaud, Switzerland
Listing for: Taurus SA
Full Time position
Listed on 2026-07-06
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security, Security Management & Operations
Salary/Wage Range or Industry Benchmark: 100000 - 130000 CHF Yearly CHF 100000.00 130000.00 YEAR
Job Description & How to Apply Below
Position: Senior Product Security Engineer / Architect ]

Do you want to be part of a new entrepreneurial adventure and help build the next global Fin Tech, then we might just have the job for you.

Taurus is a FINMA-regulated securities firm, headquartered in Geneva, Switzerland, and providing digital asset trading and financial services to its clients. It is also a world-leading provider of digital asset infrastructure solutions to banks, corporations and private companies. Using blockchain technology, Taurus platform covers cryptocurrencies, tokenized securities, tokenized assets (such as NFTs), digital currencies, and stable coins.

We are looking for ambitious and driven individuals to support our fast global growth.

Tasks

A deeply hands‑on, individual‑contributor role where you'll raise the security bar of the product itself. You're the security partner engineers want in the room: someone who can open a diff, understand the attack surface, build the automation that enforces the fix, and ship it the same day. Much of that surface is cryptographic (keys, signing, HSMs, and the trust boundary around them), so that's where you'll have the most impact.

Responsibilities
  • Own product security for all applicable digital asset products:
    Taurus-PROTECT, Taurus-CAPITAL, Taurus-EXPLORER and Taurus-NETWORK. Contribute to financial services product security.
  • Contribute to security architecture for HSMs, confidential computing, MPC, and cryptographic systems
  • Perform security reviews of application code, cryptographic workflows, smart contracts, HSM integrations, and enclave-based components
  • Model threats of new features and review architectural designs before release
  • Lead and review penetration tests, reproduce findings, and validate remediation plans
  • Build and own the automation that enforces security guardrails — across CI/CD pipelines, software supply chains, Kubernetes environments, and deployment platforms
  • Pair with product engineering teams to design and ship fixes, not just file findings
  • Review authorization models, privilege management, identity integrations, and operational access controls
  • Support incident response, vulnerability management, and security investigations
  • Support client audits, RFPs, security workshops, and regulatory discussions
  • Translate regulatory and compliance requirements into practical technical controls
  • Monitor security news and trends; identify potential impact on products and ensure timely application of corrective actions
Requirements Experience
  • Master or PhD in computer sciences, IT security engineering or cryptography
  • 7+ years in application security, product security, offensive security, or security engineering
  • Background in security-critical environments — financial services, payments, identity, custody, embedded systems, or regulated platforms
  • Fluent written and spoken English
Key Requirements

Application & product security:

  • Strong security code review experience in at least two of:
    Go, C/C++, Type Script, Python
  • Threat modeling, secure design reviews, and penetration testing
  • Ability to identify business logic flaws, authorization issues, cryptographic misuse, and complex attack paths

Cryptography & key management:

  • Strong applied‑cryptography foundation: PKI, TLS, X.509; AES, RSA, ECDSA, EdDSA; key management and key ceremonies; secure key storage and signing workflows
  • Experience with HSM technologies and PKCS#11 environments

Infrastructure & cloud security:

  • Strong Kubernetes and container security experience
  • Familiarity with cloud IAM, workload identity, secrets management, and policy‑as‑code
  • A builder’s mindset — you implement security controls, not only review them

Secure hardware & confidential computing:

  • Experience with one or more of:
    Thales / Luna HSM, AWS CloudHSM, Azure Managed HSM, Intel SGX, AMD SEV‑SNP, AWS Nitro Enclaves, Azure Confidential Computing

Client & communication skills:

  • Comfortable engaging security teams, auditors, regulators, enterprise clients, and prospect CISOs
  • Able to explain complex security topics clearly and pragmatically
A strong plus
  • Blockchain and smart contract security
  • MPC and threshold signature systems
  • Fuzzing and secure software testing
  • Security compliance and regulatory frameworks (FINMA, DORA, MiCA, ISO 27001, SOC 2,…
Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary