TRM Labs · 5 months ago
Senior Application Security Engineer
United States
Full-time
Remote
Senior Level, Lead/Staff
8+ years expTRM Labs is a blockchain intelligence company focused on combating crime and enhancing global security through advanced analytics and threat intelligence. They are seeking a Senior Application Security Engineer to lead application security initiatives, conduct security reviews, and develop best practices to ensure the security of their products. This role involves close collaboration with engineering teams to embed security into the development lifecycle and foster a culture of security within the organization.
Big DataBlockchainComplianceCryptocurrency
Responsibilities
Lead application security reviews and threat modeling, including secure code review, architectural design, and testing
Develop automated testing and mature our Secure SDLC
Own and perform application security vulnerability management
Coordinate penetration testing engagements
Support software engineers and product teams by developing application security best practices
Develop and maintain the bug bounty program
Bootstrap platform security initiatives that help protect TRM data
Inspire a culture of security across the engineering organization by fostering security champions within engineering teams and coordinating secure code training
Qualification
Required
Minimum 8 years of experience in Software Development and testing
BS (or equivalent) in Computer Science, Computer Engineering, or related field
Proficiency in software development languages: Python, NodeJS, React
Strong understanding of encryption, authentication, and authorization protocols
Deep experience with common software flaws (e.g., OWASP and CWE), testing methodologies, and using common security tooling for testing
Professional experience with open source, commercial, or native security solutions for cloud providers such as GCP and AWS
Experience with modern secure software development lifecycles, threat modeling, and best practices
Experience with conducting efficient and comprehensive code security reviews on a daily or weekly basis
Experience triaging and remediating vulnerabilities in software packages or libraries
Experience with Software Security tools such as Github advanced security or other SAST, DAST, and SCA tools
Experience with Web application testing frameworks such as BurpSuite, OWASP ZAP, etc
Experience with Threat modeling tools such as OWASP Threat Dragon, etc
Experience working in a previous agile-based software development role required
Experience Red Teaming or penetration testing applications and infrastructure
Professional experience with cloud providers (e.g., GCP and AWS), modern secure software development lifecycles, and best practices
Strong written and verbal communication skills
Preferred
Security certifications such as OSCP, CEH, GWAPT are a plus
Familiarity with security frameworks (e.g., NIST SP 800-171 SSDF) is a plus
Benefits
PTO
Holidays
Parental Leave for full time employees
Company
TRM Labs
TRM Labs is a software company that offers blockchain, transaction monitoring, and analytics to help financial institutions and governments.
201-500 employees
H1B Sponsorship
TRM Labs has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (1)
2024 (4)
2023 (3)
2022 (3)
2021 (1)
Funding
Current Stage
Growth StageTotal Funding
$149.9MKey Investors
Thoma BravoJP Morgan ChaseTiger Global Management
2022-11-09Series B· $70M
2022-04-04Series B
2022-02-28Series Unknown
Leadership Team
Esteban Castano
Co-founder & CEO
Rahul Raina
Co-Founder
Recent News
Business Wire
2026-01-09
2026-01-09
Company data provided by crunchbase