[Remote] Software Engineer - Security
Note: The job is a remote job and is open to candidates in USA. Modern Treasury is a company focused on building trusted financial infrastructure for global money movement. They are seeking a Security Engineer to design and strengthen controls that protect their payment infrastructure, ensuring secure and compliant financial products while enhancing the reliability and automation of their security systems.
Responsibilities
- Lead application security across our payment platform, including secure code review, threat modeling, and security architecture for new products
- Own product security for new payment rails, including FBO account structures, stablecoin integration, and enhanced compliance features
- Design and implement DevSecOps tooling and automation to improve security posture across CI/CD and infrastructure
- Partner with engineering teams to embed security into the development lifecycle through automation, secure design patterns, and security champions
- Drive security architecture decisions for customer-facing APIs, authentication systems, and data protection controls
- Build monitoring and detection capabilities for application-layer threats, API abuse, and fraud patterns
- Design infrastructure monitoring, automation, and remediation practices that keep our systems resilient and trustworthy
- Collaborate with Compliance and Legal to ensure product features meet regulatory requirements (BSA/AML, KYC/KYB, state money transmission)
- Influence technical strategy across Product, Platform, and Infrastructure teams on security and risk management
Skills
- 6+ years in security engineering, with 3+ years focused on application and product security
- Strong experience with: Full-stack application security (frontend, backend, APIs)
- Strong experience with: Authentication and authorization systems and identity management
- Strong experience with: Infrastructure automation related to security (AWS, Docker, CI/CD pipelines)
- Strong experience with: Fraud detection, prevention, and abuse mitigation in payment or financial products
- Strong experience with: Secure SDLC practices and developer security tooling
- Experience with incident response and security monitoring
- Knowledge and experience with application security for Ruby on Rails, GraphQL, JavaScript, React, and containerized environments
- Payments engineering experience, ideally including fraud prevention and risk controls in money movement systems
- 2+ years in payments or fintech, with a deep understanding of money movement security challenges
- Familiarity with compliance and regulatory standards for money movement, such as PCI DSS, BSA/AML, and KYC/KYB
- Experience with payment processing security across ACH, wires, card networks, and emerging rails
- Experience building controls for fraud detection, chargeback prevention, and abuse mitigation in payment systems
- Experience integrating security into DevOps workflows (e.g., Buildkite, IaC, AWS security automation)
- Experience with stablecoin security, blockchain integrations, or crypto payment rails
- Track record of balancing pragmatic risk management with business velocity
- Demonstrated ability to lead security initiatives across multiple teams without direct authority
Benefits
- Equity
- Remote
Company Overview