Member of Technical Staff, Security Operations

{
  "content_hash": "c32a0aecac6f7d618d409e9e51214c0fe81b9e5c1da676432fad7ba752b4304b",
  "source_hash": "21b220099cbd5c5f9a3b66ab2a7800fd8cbf1bdcb7c99ca6199b125635812994",
  "last_changed_at": "2026-06-09T07:56:03.136Z",
  "active_status": "active"
}

{
  "language": "en",
  "location": {
    "raw": "United States",
    "city": null,
    "region": null,
    "country": "United States",
    "is_remote": true,
    "confidence": 0.95
  },
  "salary_max": null,
  "salary_min": null,
  "inferred_at": "2026-06-19T07:55:52.585Z",
  "launch_scope": {
    "reason": "english_us_canada",
    "included": true,
    "language": "en",
    "location": {
      "raw": "United States",
      "city": null,
      "region": null,
      "country": "United States",
      "is_remote": true,
      "confidence": 0.95
    },
    "countries": [
      "United States"
    ]
  },
  "remote_policy": "remote",
  "salary_period": null,
  "workplace_type": "remote",
  "salary_currency": null
}

{}

{
  "lists": [
    {
      "text": "Technical Skills:",
      "content": "\n<li>Build and maintain security automation and tooling to detect vulnerabilities through static and dynamic analysis across code and live systems.</li>\n<li>Conduct application security assessments, penetration tests, and code reviews to identify high-risk security issues and provide secure development guidance.</li>\n<li>Develop and operate vulnerability management workflows, partnering with engineering teams to prioritize and remediate findings.</li>\n<li>Establish and test security guardrails for code, cloud resources, and infrastructure components throughout the Anchorage platform.</li>\n"
    },
    {
      "text": "Complexity and Impact of Work:",
      "content": "\n<li>Monitor and respond to security events and configuration anomalies across the organization, leading investigation and containment efforts.</li>\n<li>Manage the full vulnerability lifecycle from discovery through remediation, tracking progress and ensuring timely closure of findings.</li>\n<li>Lead or substantially contribute to Security Operations initiatives with minimal oversight, coordinating across team boundaries to drive projects to completion.</li>\n<li>Break complex security problems into manageable workstreams with accurate scope and time estimates. Present options clearly and provide well-reasoned priority recommendations.</li>\n<li>Deliver assurance artifacts and evidence for regulated entity requirements, supporting audit and compliance efforts.</li>\n<li>Balance speed of response with thoroughness of investigation, adapting approach based on risk and business impact.</li>\n"
    },
    {
      "text": "Organizational Knowledge:",
      "content": "\n<li>Understand and help implement the company's security strategy by participating in planning and defining Security Operations goals in alignment with Anchorage Digital's overall objectives.</li>\n<li>Stay alert to emerging threats, vulnerabilities, and industry trends that could affect organizational security posture.</li>\n<li>Consider security holistically across the product ecosystem—applications, infrastructure, and third-party integrations—while fostering a security-first culture.</li>\n<li>Collaborate cross-functionally with Engineering, Infrastructure, and Compliance teams to embed security into development and operational processes.</li>\n"
    },
    {
      "text": "Communication and Influence",
      "content": "\n<li>Share knowledge broadly across the team through documentation, runbooks, and post-incident reviews, preventing single points of failure.</li>\n<li>Partner with engineering teams to explain security risks and remediation approaches, translating technical findings into actionable guidance.</li>\n<li>Collaborate across teams to review security configurations, triage findings, and engage in technical discussions. Communicate insights and recommendations clearly to improve processes.</li>\n<li>Demonstrate empathy by understanding others' context, priorities, and constraints—adapting communication style to maximize effectiveness with both technical and non-technical audiences.</li>\n"
    },
    {
      "text": "You may be a fit for this role if you have: ",
      "content": "\n<li>Security Operations or AppSec experience: You have 3+ years of hands-on experience in security engineering, application security, penetration testing, or security operations.</li>\n<li>Security tooling and automation: You have built or maintained security tools, integrations, or automation workflows using Python, Go, or similar languages.</li>\n<li>Vulnerability assessment: You can identify and assess security vulnerabilities in applications, APIs, and cloud infrastructure, and effectively communicate remediation strategies.</li>\n<li>Static and dynamic analysis: You have experience with tools like Semgrep, CodeQL, Burp Suite, or equivalent for identifying security issues in code and running systems.</li>\n<li>Cloud security: You understand AWS security fundamentals including IAM, VPCs, security groups, and CloudTrail/logging.</li>\n<li>Incident response: You can investigate security events, perform root cause analysis, and coordinate response efforts.</li>\n<li>You have developed \"computer science fundamentals,\" i.e. concurrency, algorithms, and data structures.</li>\n<li>You genuinely care about code quality and operational excellence.</li>\n<li>You prioritize security outcomes, end-user experience, and business value over \"cool tech.\"</li>\n<li>You self-describe as some combination of the following: creative, humble, ambitious, detail-oriented, hardworking, trustworthy, eager to learn, methodical, action-oriented, and tenacious.</li>\n"
    },
    {
      "text": "Although not a requirement, bonus points if: ",
      "content": "\n<li>You have experience running or participating in bug bounty programs (HackerOne, Bugcrowd, etc.).</li>\n<li>You have worked in a regulated financial services, fintech, or crypto environment.</li>\n<li>You have exposure to blockchain security, smart contract auditing, or Web3 technologies.</li>\n<li>You have built or contributed to open-source security tools.</li>\n<li>You hold relevant certifications (OSCP, GWAPT, GCIH, AWS Security Specialty, etc.).</li>\n<li>You read blockchain protocol white papers for fun, and stay up to date with the proliferation of crypto-asset innovations.</li>\n<li>You were emotionally moved by the soundtrack to Hamilton, which chronicles the founding of a new financial system. :)</li>\n"
    }
  ],
  "country": "US",
  "createdAt": 1733341567908,
  "updatedAt": null,
  "categories": {
    "team": "Security Engineering",
    "location": "United States",
    "commitment": "Full-Time - Remote",
    "department": "Engineering",
    "allLocations": [
      "United States"
    ]
  },
  "salaryRange": null,
  "workplaceType": "remote"
}