Staff Security Engineer

Nansen operates as a blockchain analytics platform that enhances on-chain data by associating millions of wallets with labels. The platform serves crypto investors by enabling them to uncover opportunities, conduct thorough research, and safeguard their investment portfolios through real-time dashboards and alerts.

Role Overview The Staff Security Engineer will be in charge of ensuring the secure functioning of the user-facing application and the cloud infrastructure. Initially focused on security for the staking offering, responsibilities include key management, infrastructure fortification, and compliance preparedness. Over time, duties will expand to cover the entire application and data analytics platform. In addition to hands-on implementation, shaping the organization's long-term security vision will be a critical aspect. Emphasis will be on defensive security, working closely with DevOps, SREs, and other engineering teams to maintain and enhance the security posture continually.

Applicants can be situated anywhere in Europe as the work is entirely remote. The position is full-time.

Responsibilities

• Infrastructure and network security: Take charge of implementing baseline cloud, container, and application security standards, integrating them into the stack regularly, including utilizing vulnerability scanning tools. Secure bare-metal servers, install security tools, and engage in setup and maintenance actively. Collaborate with external providers to manage and supervise penetration tests and prioritize identified vulnerabilities.
• Blockchain security: Enhance key management processes, focusing on protecting vital blockchain keys through Hardware Security Modules (HSMs) or equivalent solutions. Monitor and evaluate blockchain-exposed surfaces, personally scrutinizing internal and external endpoints for potential vulnerabilities. Work with external providers to arrange and oversee security audits and reviews of smart contracts and blockchain components to highlight and address improvements.
• Compliance: Team up to sustain clear, updated security documentation, including reference architectures and operational procedures. Driven to execute necessary security architecture, methods, and controls ensuring compliance and audit requirements are met.
• Incident response: Lead security incident investigations, containment, and resolutions with a proactive approach. Conduct thorough postmortems to pinpoint root causes and develop future prevention steps.

Requirements

• Profound knowledge of key management best practices and encryption fundamentals.
• Solid understanding of defensive security tools and methodologies in dynamic environments.
• Demonstrated experience in implementing and upkeeping security systems like SIEM, endpoint protection, network detection, vulnerability scanning, and cloud security tools.
• Understanding of blockchain security, smart contract evaluations, and robust key management processes.
• Proficiency in vulnerability scanning tools, penetration testing, and code audit processes.
• Excellent communication and technical documentation skills.
• Familiarity with compliance frameworks and certification processes considered a bonus.
• Embrace an AI-first mindset, utilizing AI tools and techniques to optimize processes and results.

What We Offer

• Competitive salary and generous equity sharing.
• Remote work setup with a flexible schedule.
• A team invested in learning and openness to innovative solutions, including AI.
• Embrace a culture based on speed, ownership, curiosity, simplicity, transparency, and courage.
• Opportunities for personal and professional advancement as the organization grows.
• Access to a global network of industry professionals, partners, and influencers.