Enterprise Security Engineer

Summary

Join Gemini, a global crypto and Web3 platform, as a Staff Enterprise Security Engineer to lead initiatives securing Gemini’s corporate infrastructure and employee endpoints. Oversee and deliver security projects across multiple corporate IT and engineering teams. This role requires in-person presence twice a week in either Seattle, WA or New York City, NY. Responsibilities include driving security initiatives, providing security expertise, performing security design reviews and risk assessments, responding to security incidents, partnering with IT and internal teams, and implementing security best practices. The position requires significant experience in infrastructure or enterprise security engineering, along with expertise in various operating systems and security protocols. Competitive salary, bonus, equity grant, comprehensive health plans, 401k matching, paid parental leave, and flexible time off are offered.

Requirements

• Significant experience in an infrastructure or enterprise security engineering role
• Experience with macOS, Windows, Linux, iOS, and Android endpoint security controls and tooling
• Knowledge of authentication systems and protocols like SAML, OAuth, RADIUS, etc
• Proficiency with scripting/coding to build security tooling and automation
• Knowledge of networking concepts like VPNs, VLANs, firewalls, proxies, etc
• Ability to interpret and apply security standards, compliance regulations, and best practices

Responsibilities

• Drive security initiatives such as endpoint hardening, corporate access controls, and authentication systems
• Provide security expertise and guidance for corporate infrastructure projects
• Perform security design reviews and risk assessments for new services and integrations
• Respond to security incidents and events impacting corporate systems
• Partner closely with IT and other internal teams to balance business needs with appropriate security
• Evangelize and implement security best practices through education, automation, and tooling

Preferred Qualifications

• Experience with Okta, Duo, Ping, or other IAM/IDP/MFA platforms and integrations
• Familiarity with with AWS, GCP, or other cloud environments and their security best practices
• Experience with Santa or similar binary authorization systems
• Deep expertise in macOS system internals and hardening
• Participation in a software development lifecycle from design through deployment
• Strong communication skills to socialize security guidance across functional teams

Benefits

• Competitive starting salary
• A discretionary annual bonus
• Long-term incentive in the form of a new hire equity grant
• Comprehensive health plans
• 401K with company matching
• Paid Parental Leave
• Flexible time off