Member of Technical Staff, Security Engineering

At Anchorage Digital, we are building the world’s most advanced digital asset platform for institutions to participate in crypto.\n\nWe are seeking a highly skilled Member of Technical Staff, Security Engineering to join our team. This role will be responsible for developing and implementing high-quality, secure code for cryptographic controls throughout our infrastructure.\n\nKey Responsibilities:\n\n Develop and implement high-quality, secure code for cryptographic controls throughout our infrastructure.\n Review code throughout the technology stack and help engineering teams resolve issues related to security guardrails.\n Foster an efficient testing culture while reducing technical debt and unnecessary processes.\n\nComplexity and Impact of Work:\n\n Build robust, resilient components that are easily integrated by other teams to ensure asset and data security.\n Develop and maintain threat models for cryptosystem guarantees, both internal and external.\n Monitor technical debt and proactively identify areas for improvement.\n Lead or substantially contribute to medium and large Security Team initiatives with minimal oversight.\n Coordinate team members across engineering boundaries and drive projects from inception to completion.\n\nOrganizational Knowledge:\n\n Understand and help implement the company's strategy by participating in planning and defining the Security Team's strategic goals in alignment with Anchorage Digital's overall objectives.\n Stay alert to emerging company objectives and industry trends that could affect organizational success.\n Consider security holistically across the entire product ecosystem while fostering a security-first company culture.\n\nCommunication and Influence:\n\n Share knowledge broadly across the team while preventing single points of failure.\n Mentor and guide engineers throughout the Engineering team.\n Collaborate across teams to solve problems, review specifications, and engage in technical discussions.\n Communicate insights and recommendations clearly to improve processes and address technical debt.\n\nYou may be a fit for this role if you have:\n\n A strong foundation in applied cryptography, including symmetric/asymmetric encryption, hashing algorithms, digital signatures, key exchange protocols, and common cryptographic libraries.\n Experience with the configuration and use of Hardware Security Modules (HSMs) for secure key generation, storage, and management.\n Understanding and implementation of various authentication and authorization mechanisms, including multi-factor authentication, OAuth 2.0, and role-based access control (RBAC).\n Ability to identify and assess potential threats to systems and applications, and effectively prioritize mitigation strategies.\n Developed computer science fundamentals, such as concurrency, algorithms, and data structures.\n Genuine care about code quality and test infrastructure.\n Prioritization of security, end-user experience, and business value over 'cool tech'.\n\nAlthough not a requirement, bonus points if:\n\n You read blockchain protocol white papers for fun, and stay up to date with the proliferation of cryptoasset innovations.\n You were emotionally moved by the soundtrack to Hamilton, which chronicles the founding of a new financial system.