Senior Security Engineer; NYC​/MIA

Senior Security Engineer (NYC / MIA) About Crossmint

Crossmint is the leading enterprise-grade, all‑in‑one stablecoin and wallet infrastructure platform enabling fintechs and enterprises to integrate stablecoin rails and smart wallets with speed, compliance, and scale.

Backed by Ribbit Capital, Franklin Templeton, NYCA, First Round, and Lightspeed Faction, with $23.6M raised in 2025. Trusted by more than 40,000 clients including global leaders such as Money Gram, WireX, Toku, and more, Crossmint provides embedded smart wallets, on/offramps, cross‑chain stablecoin orchestration, tokenization, and other blockchain primitives through simple, developer‑friendly APIs that integrate in minutes and scale to millions of users.

In January 2026, Crossmint secured MiCA authorization from Spain's CNMV, becoming one of a select few stablecoin infrastructure providers fully licensed to operate across all 27 EU member states and held to the same regulatory standards as traditional financial institutions. Crossmint also powers the Republic of the Marshall Islands' first digital UBI program, backs Money Gram’s new stablecoin cross‑border experience launching in LATAM, and recently partnered with WireX to expand multichain stablecoin payment infrastructure to non‑EVM networks like Stellar.

The future of finance is stablecoin-native. Crossmint makes it easy to get there.

NYC or Miami. Hybrid office setting.

Full-time

180, USD

Note:

We determine candidate levels through insights gained during the interview process.

We are seeking a Senior Security Engineer to own the operational execution of security at Crossmint as we continue to scale. The volume of security operations, compliance work, and engineering support requires dedicated ownership to maintain a strong security posture as the company grows.

This role is foundational. You will run the day‑to‑day security function, partnering closely with engineering, compliance and external vendors to ensure our infrastructure, applications and processes remain secure. This role enables security leadership to focus on strategy, automation and long‑term risk management while you ensure operational excellence and follow‑through.

• Own and operate cloud security across our cloud environments: AWS primarily, with some exposure to GCP, Vercel.
• Design, maintain and monitor engineering security controls including cloud IAM, logging, monitoring/alerting and key management.
• Secure our coding assets, including CI/CD pipelines, Git Hub Action environments, secrets management and software supply chain.
• Manage security‑related access controls including privileged access, service accounts, credential rotation and performing access reviews.

• Perform secure code reviews and provide hands‑on application security support to engineering teams.
• Review authentication flows, payment logic and API security with human judgment, not just automated scanners.
• Partner with engineers to remediate vulnerabilities and embed security best practices into product development.
• Coordinate our external security review program with our 3P security auditor firms.

• Own vulnerability management workflows including prioritization, remediation tracking and verification.
• Support incident response through internal triage, investigation and remediation in collaboration with external 24/7 response partners.

• Support SOC 2 and other compliance efforts by collecting evidence, documenting controls and maintaining audit‑ready processes for engineering‑security related controls.
• Contribute to regulatory and compliance initiatives such as DORA where applicable.

• 4‑8 years of experience as a security engineer.
• 3+ years of hands‑on experience securing AWS environments or equivalent cloud, including IAM, Security Hub, Cloud Trail, Guard Duty, and KMS.
• Strong understanding of CI/CD security, including Git Hub Actions, secrets scanning and dependency management.
• Experience with secure code review or application security fundamentals.
• Expe…