Staff Software Engineer - Security

Summary

Join Bitso as a Staff Software Engineer and take ownership of critical technical decisions, collaborating with the team to implement enhancements and ensure high-quality systems. You will define and deliver cutting-edge technical solutions, guide and mentor other engineers, and set the technical direction and architecture of applications. Your deep understanding of cybersecurity strengthens both your team and Bitso. This role requires 5+ years of staff software engineering experience, including leadership and mentoring experience. You will architect security solutions, deliver high-performance code, conduct code reviews, champion cyber security engineering excellence, and foster knowledge sharing. Bitso offers a remote-first work environment, unlimited paid time off, employee stock options, zero trading fees, extended family leave, premium health insurance, and a monthly stipend for wellness activities.

Requirements

• Demonstrates 5+ years of staff software engineering experience, including leadership experience, including managing and mentoring technical and product-oriented teams
• Displays exceptional oral and written communication skills, and can convey complex security concepts to diverse audiences, including technical and non-technical stakeholders
• Possesses excellent time and project management skills, with a proven ability to lead complex security initiatives and deliver results within set deadlines
• You've got large experience working with Java 8+
• Strong hands-on experience developing high scalable system designs and building proposed solutions with teams
• Strong understanding and experience working with distributed systems
• Strong hands-on experience implementing multi-factor authentication (MFA) solutions, including biometrics, one-time passwords (OTP), WebAuthn, FIDO2, and risk-based authentication
• Strong hands-on experience with secure coding principles and best practices, such as those outlined in the OWASP Top 10 and SANS CWE Top 25
• Strong hands-on experience with API security best practices, including OWASP API Security Top 10, secure authentication (e.g., JWT), rate limiting, input validation, etc
• In-depth knowledge of authentication and authorization mechanisms, including OAuth 2.0, OpenID Connect, SAML, and RBAC/ABAC models
• Strong understanding of encryption standards, hashing algorithms and key management best practices for securing sensitive data
• Proficiency in threat modeling methodologies (e.g., STRIDE, DREAD, PASTA) to systematically identify, analyze, and mitigate potential attack vectors
• Experience working with application security testing tools, including SAST, DAST, and SCA tools to proactively detect and remediate vulnerabilities
• Familiarity with SIEMs, logging, and monitoring tools (e.g., Splunk, ELK)
• Familiarity with offensive security methods such as red teaming, pe netration testing and vulnerability assessments
• Experience with observability and monitoring tools (e.g., Splunk, Datadog)
• Experience working with Git and automated CI/CD tools
• Available to work full-time
• Proficient in English

Responsibilities

• Architect Security Solutions: Design and implement scalable and security, high-impact improvements to our product that support rapid growth and high visibility
• Deliver High-Performance Code: Produce efficient, high-performance code that scales to meet the demands of hundreds of thousands of daily users
• Stay Hands-On: Maintain active involvement in coding, participating fully in the development process from start to finish
• Conduct Quality Code Reviews: Perform thorough and respectful code reviews, maintaining the highest quality standards across the team
• Champion Cyber Security Engineering Excellence: Advocate for best practices in engineering, cyber security by promoting efficiency, continuous improvement, innovation and security robustness
• Foster Knowledge Sharing: Engage with the Bitso engineering community, contributing to knowledge sharing, innovation, and effective problem-solving
• Cyber Security Maturity: Engage with the Bitso Cyber Security needs and evolutions while guiding the team and departments to deliver software with high standards of quality, security and reliability

Preferred Qualifications

• You know your way around Kubernetes, GRPC, and REST
• You've got knowledge or experience in the finance industry
• SSDLC related certifications (e.g. OSWE, CSSLP, GWEB, CASP)
• Familiarity with laws governing the privacy and security of personal data (e.g., GDPR, CCPA)

Benefits

• Me Time program, including unlimited paid time off
• Remote-first work environment
• Employee Stock Option program
• Zero trading fees through our Bitso Alpha app
• Extended Family Leave Policy: all birthing parents, non-birthing parents and adopting parents are eligible for a 4-months leave
• Premium health, dental and life insurances in Mexico, Gibraltar, Colombia, USA, Brazil and Argentina
• Monthly stipend for gym memberships, relaxation activities, sports equipment, cooking classes, books, entertainment and more