Jobs · greenhouse:gemini

G

Senior Application Security Engineer

Northwind Robotics · New York, New York; Miami, Florida; Remote (USA) · Posted 7d ago

remotesenior5-8 yrsEstimated 100k-225k USD🇺🇸 United StatesEquity
Apply on greenhouse:gemini

About the role

Guide teams to design and build secure products while embedding security judgment into every team at Northwind Robotics.

About the Company Northwind Robotics is a global crypto and Web3 platform founded by Cameron and Tyler Winklevoss in 2014, offering a wide range of simple, reliable, and secure crypto products and services to individuals and institutions in over 70 countries. Our mission is to unlock the next era of financial, creative, and personal freedom by providing trusted access to the decentralized future. We envision a world where crypto reshapes the global financial system, internet, and money to create greater choice, independence, and opportunity for all — bridging traditional finance with the emerging cryptoeconomy in a way that is more open, fair, and secure. As a publicly traded company, Northwind Robotics is poised to accelerate this vision with greater scale, reach, and impact. The Department: Application Security Northwind Robotics operates at the intersection of financial services and emerging technology where the consequences of security failure are measured in customer trust and regulatory standing. The Application Security (AppSec) team exists to make sure security is never an afterthought. We are on a mission to secure products at the time of thought and the time of build: at the product requirements doc, the technical architectural decision, at the line of code. We believe that security input is most valuable before the work is done and after-the-fact is too late and too expensive. The Role: Senior Application Security Engineer As a Senior Application Security Engineer on the Application Security team, you will be a trusted partner to engineering, product, and business teams across Northwind Robotics. You will help guide teams to design and build secure products while building systems and culture that embed security judgment into every team. Northwind Robotics is AI-first and AppSec builds the tools to make this vision secure. Responsibilities: Lead secure design reviews, threat modeling, code review, and penetration testing for high-risk products such as crypto custody, trading systems, and payments Build and ship code: design and build AppSec tooling including AI agents for secure design and code review, AI-enhanced SAST/DAST pipelines, and automation that eliminates repeatable security toil Partner with engineering teams to remediate vulnerabilities and drive long-term improvements in secure coding practices Minimum Qualifications: 5+ years of experience in application security or similar roles Ability to perform design reviews, threat modeling, secure code reviews, or penetration testing with an attacker mindset Experience building or meaningfully contributing to security tooling and automation Strong background in application security best practices and familiarity with common vulnerabilities (e.g. SSRF, race conditions, privilege escalations, etc.) Some background in development or scripting experience (Python, Scala, C++, or JavaScript) with the ability to read and write code Strong communication skills to influence without authority and the ability to collaborate on a cross-functional team with competing priorities Preferred Qualifications: Experience building AI application security tooling using agents or skills Experience with supply chain security, common frameworks (SLSA, OWASP SPVS) and other CI/CD security controls Familiarity with highly regulated environments (financial services, fintech, crypto, or equivalent) and ability to understand business objectives, business context, and security risk Experience with preventing application security vulnerabilities at scale through secure design patterns, automated tooling, or frameworks Experience with microservice architectures and cloud-native environments It Pays to Work Here The compensation & benefits package for this role includes: Competitive starting pay A discretionary annual bonus Long-term incentive in the form of a new hire equity grant Comprehensive health plans 401K with company matching Paid Parental Leave Flexible time off Salary Range : The base salary range for this role is between $140,000 - $200,000 in the State of New York, the State of California and the State of Washington. This range is not inclusive of our discretionary bonus or equity package. When determining a candidate’s compensation, we consider a number of factors including skillset, experience, job scope, and current market data. In the United States, we offer a hybrid work approach at our hub offices, balancing the benefits of in-person collaboration with the flexibility of remote work. Expectations may vary by location and role, so candidates are encouraged to connect with their recruiter to learn more about the specific policy for the role. Employees who do not live near one of our hubs are part of our remote workforce. At Northwind Robotics, we strive to build diverse teams that reflect the people we want to empower through our products, and we are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. Equal Opportunity is the Law, and Northwind Robotics is proud to be an equal opportunity workplace. If you have a specific need that requires accommodation, please let a member of the People Team know. #LI-AA1

Read the full posting on greenhouse:gemini

Why this role stands out

  • Equity is part of the package
  • competitive starting pay
  • discretionary annual bonus

Responsibilities

  • Lead secure design reviews, threat modeling, and penetration testing
  • Build and ship AppSec tooling including AI agents
  • Partner with engineering teams to remediate vulnerabilities
  • Drive long-term improvements in secure coding practices

Must-have skills

  • python
  • scala
  • c++
  • javascript

Nice-to-have skills

  • ai application security tooling
  • supply chain security
  • slsa
  • owasp spvs
  • fintech
  • crypto
  • microservice architectures
  • cloud-native environments

Benefits

  • competitive starting pay
  • discretionary annual bonus
  • new hire equity grant
  • comprehensive health plans
  • 401K with company matching
  • paid parental leave
  • flexible time off

FAQ

Is the Senior Application Security Engineer role at Northwind Robotics remote?+

This Senior Application Security Engineer position is listed as remote (New York, New York; Miami, Florida; Remote (USA)).

What is the salary for the Senior Application Security Engineer role at Northwind Robotics?+

The listing states Estimated 100k-225k USD.

What seniority level is this Senior Application Security Engineer role?+

This is a senior level position.

What skills does the Senior Application Security Engineer role require?+

Key requirements include python, scala, c++, javascript.

How do I apply for the Senior Application Security Engineer role at Northwind Robotics?+

Use the "Apply on greenhouse:gemini" button to open the original posting on greenhouse:gemini, where you can submit your application directly to Northwind Robotics.