Founding Security Engineer

About Nclusion Nclusion is on a mission to provide traditional financial services to 1.5 billion people worldwide without access today. Without a secure way to save, invest, or transfer money, individuals are not empowered to accumulate short or long-term wealth. We're changing that by bridging the gap between traditional banking and the communities that need it most. About the Role As a Security Engineer at Nclusion, you'll be a hands-on builder at the intersection of product security, payments security, and cloud/infra security. You'll partner with engineering, product, hardware, and operations to design secure-by-default systems, reduce risk without slowing delivery, and raise the bar on trust-across mobile apps, backend services, payments/Stablecoin infrastructure, and card/device programs. What You'll doDesign & review secure architectures for login/auth flows, payments, KMS/HSM usage, card/device interactions, and data protections. Threat model features (web, mobile, backend, hardware) and turn risks into pragmatic controls, test cases, and guardrails. Build security automations (SAST/SCA, CI policy gates, IaC validation, secret scanning, SBOM/provenance, dependency hygiene). Harden cloud/infra on GCP: identity boundaries, network segmentation, workload identity, service accounts, least privilege, secrets. Ship observability for trust: structured logs, audit trails, detection hooks, incident runbooks, and post-incident improvements. Own incident response drills with engineering; triage, contain, learn; drive reliability & fraud-prevention signals into products. Partner on compliance (PCI-DSS/SOC2/ISO): help define scope, automate evidence, and keep "secure by design" as the default. Enable teams with secure patterns, library wrappers, and "paved roads" (auth clients, tokenization, crypto APIs, KMS helpers). Contribute across the stack (TypeScript/Node/React-Native; Terraform; container/K8s) and collaborate with hardware/firmware when needed. What You Bring to the Table B.S. in Computer Science or a related field 6+ years of experience in Security Engineering Familiarity with payments, PCI concepts, etc. PCI-DSS/SOC2/ISO27001 participation, evidence automation, and SDLC governance Experience with cryptography & key management (KMS/HSM, tokenization, envelope encryption) Experience supply-chain security (SBOM, Sigstore/cosign, SLSA); mobile security (React-Native) Experience with detection engineering (SIEM/OTel), incident response/forensics, red/purple teaming Interest or experience in hardware/embedded security (smart cards, POS, secure elements) Fluent technical writing; empathy for users and regulators; bias to action is a plus. Yearly Salary: $150,000 - $260,000

Created: 2026-03-10