FreeHire

MoonPay

Senior Security Engineer - Automation

Show

You will design and integrate security tooling into CI/CD pipelines, build automation to streamline security workflows, and own the full vulnerability management lifecycle from identification to remediation. You will collaborate with engineering teams to drive timely fixes, translate threat research into detection or prevention mechanisms, and support incident response with automation and vulnerability data. You will document tools and processes, triage findings from scanners and tests, and champion automation opportunities across cross-functional teams.

Responsibilities

  • Design and implement security tooling integrations into CI/CD pipelines
  • Develop and maintain automation scripts and platforms to streamline security workflows
  • Own and operate the end-to-end vulnerability management lifecycle
  • Collaborate with engineering teams to ensure timely remediation and provide secure coding guidance
  • Drive adoption and implementation of the SLSA framework for supply chain security
  • Continuously evaluate and improve security automation and vulnerability management workflows
  • Research emerging threats and translate findings into detection or prevention mechanisms
  • Develop and maintain documentation for security automation tools and procedures
  • Triage and validate findings from scanners, penetration tests, and bug bounty programs
  • Create security training materials focused on secure development practices
  • Support incident response activities where automation or vulnerability data aid investigation
  • Champion and execute the security automation strategy for cross-functional needs

Requirements

  • Solid background in software development with experience in Go, Python, or Node.js
  • Demonstrable passion for cybersecurity with focus on security automation and vulnerability management
  • Understanding of SAST, DAST, SCA, and secrets scanning tools within CI/CD environments (GitHub)
  • Knowledge of vulnerability management principles and prioritization frameworks such as CVSS
  • Familiarity with the SLSA framework or similar supply chain security initiatives
  • Ability to collaborate with technical teams and communicate security concepts clearly
  • Strong analytical and problem-solving skills with an aptitude for automation
  • Self-motivated, takes ownership, and operates effectively in remote fast-paced environments
  • Experience in FinTech, SaaS, or Crypto is a plus
  • Familiarity with cloud security principles (AWS, GCP)
  • Deep understanding of GitHub functionalities and GitHub Enterprise administration
  • Familiarity with GitHub Actions for workflow automation and security enforcement

Benefits

  • Equity package
  • Pay for performance equity bonus
  • Moonshot award (equity grant)
  • Unlimited holidays
  • Hybrid working schedule with option to work fully remotely or from nearest Moonbase
  • Private healthcare benefits
  • Enhanced parental leave
  • Home office setup allowance
  • Remote working allowance
  • Monthly product budget and zero fee crypto transactions
  • Employee referral programme (10K in USDC)
  • Regular remote company offsites