Secure the Future of Payments with Lightspark
Lightspark is revolutionizing online payments with always-on solutions powered by Bitcoin, the only open and neutral network for moving value. Our enterprise tools, including Connect, UMA, and Spark, empower businesses to send and receive money instantly, securely, and at a fraction of the cost, anytime, anywhere. Join our team and help us build the future of finance.
We are seeking a passionate and experienced Staff Security Engineer to champion security across our platform. In this critical role, you will define and execute security strategy, build robust security frameworks, conduct in-depth security reviews, and enhance our detection and response capabilities. You'll be a key player in securing the next generation of decentralized payments.
As a Staff Engineer, you'll collaborate closely with engineering and product teams to proactively identify and mitigate vulnerabilities across our ecosystem. This role demands a broad understanding of modern infrastructure, application security practices, and crypto technologies to build secure, scalable, and decentralized payments.
What You'll Do:
Lead Technical Security Strategy: Define the security roadmap across application, infrastructure, and crypto domains, balancing innovation with pragmatic risk management.
Build Secure-by-Default Frameworks: Design and implement tools, libraries, and systems that embed security into products and infrastructure from the ground up.
Perform Deep Technical Reviews: Audit designs and codebases (with an emphasis on blockchain/crypto components), identify vulnerabilities, and guide teams in secure design and development.
Mentor and Guide Teams: Provide technical leadership and mentorship on secure development practices, encryption, authentication, access control, and crypto-specific security.
Strengthen Detection & Response: Partner with operations teams to enhance monitoring, incident investigation, and response—particularly around blockchain and code-level threats.
Champion Security Culture: Lead training and awareness programs to up-level security knowledge across engineering, with a focus on blockchain and secure coding.
Stay Ahead of Threats: Track emerging risks, attack vectors, and technologies in both traditional and crypto ecosystems, recommending strategies for continuous improvement.
What You'll Bring:
8+ years of security engineering experience spanning application security, infrastructure/cloud security, and secure software development.
Strong background in software engineering with proficiency in at least one programming/scripting language (e.g., Python, Go, Java, C/C++).
Deep knowledge of security fundamentals: secure coding, encryption, authentication, access control, and vulnerability management.
Experience leading technical application and infrastructure security initiatives; blockchain/crypto security is a significant plus.
Familiarity with industry standards/frameworks (e.g., OWASP, NIST, ISO 27001) and their application in blockchain/financial ecosystems.
Excellent problem-solving, analytical, and communication skills; able to operate as both a hands-on engineer and a technical leader.
A CS degree or equivalent background is welcome, but we value diverse paths—especially from non-traditional or crypto-native security backgrounds.
Lightspark is committed to building an inclusive and diverse workplace. We welcome individuals of all backgrounds and levels of experience who share our mission. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, or other applicable legally protected characteristics.
We will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the State of California Fair Chance Initiative for Hiring.