Security Engineer

Role Overview

Security Engineer at Modern Treasury, focused on hands-on security engineering with heavy emphasis on automation. You’ll design and strengthen application, product, and infrastructure security controls that protect the company’s payment platform and enable compliant, programmable money movement at scale.

Responsibilities

• Lead application security for the payment platform, including secure code review, threat modeling, and security architecture for new products
• Own security for new payment rails (e.g., FBO account structures, stablecoin integration, and enhanced compliance features)
• Build DevSecOps tooling and automation to improve security posture across CI/CD and infrastructure
• Embed security into the development lifecycle with automation, secure design patterns, and security champions
• Drive security architecture decisions for customer-facing APIs, authentication/authorization, and data protection controls
• Implement monitoring and detection for application-layer threats, API abuse, and fraud patterns
• Create infrastructure monitoring, automation, and remediation practices to keep systems resilient and trustworthy
• Partner with Compliance and Legal to meet regulatory requirements (e.g., BSA/AML, KYC/KYB, state money transmission)
• Influence technical security and risk strategy across Product, Platform, and Infrastructure teams

Requirements

• 6+ years security engineering experience, including 3+ years in application and product security
• Strong full-stack application security experience across front-end, back-end, and APIs
• Expertise in authentication/authorization and identity management
• Security-focused infrastructure automation (e.g., AWS, Docker, CI/CD pipelines)
• Fraud detection/prevention/abuse mitigation experience in payment or financial products
• Secure SDLC practices and developer security tooling
• Incident response and security monitoring experience
• Application security experience for Ruby on Rails, GraphQL, JavaScript, React, and containerized environments
• Payments engineering experience, ideally including fraud prevention and risk controls in money movement

Nice to Have / What Sets You Apart

• 2+ years in payments/fintech with deep understanding of money movement security challenges
• Familiarity with compliance/regulatory standards such as PCI DSS, BSA/AML, and KYC/KYB
• Payment processing security experience across ACH, wires, card networks, and emerging rails
• Experience building controls for fraud detection (trailing text not fully shown)