The security engineering team at Chainalysis is driven by the mission to solve the most complex security challenges while building trust in the cryptocurrency ecosystem. As a global entity with talented teams in the UK, Denmark, and the USA, we embrace rapid industry changes by developing a flexible platform that adapts swiftly and securely.
Platform Engineers at Chainalysis work within a highly skilled team that thrives on making the whole engineering team more effective. Responsible for the evolution of our multi-cloud infrastructure, they champion infrastructure best-practices and influence team goals and product roadmaps. Whether it’s tools to make operating code in production easier, managing foundational shared services or education on AWS, the team is guided by the question - how do we help our colleagues reduce cognitive load and get more done?
In this role, you’ll:
Design secure infrastructure solutions using Infrastructure as Code (IaC) tools like Terraform. Review pull requests for security enhancements and provide feedback to ensure best practices are followed.
Dive into security analysis, leveraging tools and scripts to assess our environment for vulnerabilities. Work on enhancing security measures based on your findings, collaborating with the Information Security team for insights and recommendations.
Spend time developing and refining automation scripts to streamline security deployments. Work on custom tooling that integrates with security APIs to enhance our visibility and response capabilities.
Integrate and refine security measures within our CI/CD pipelines, ensuring automated scans and checks are effectively identifying vulnerabilities before deployment. Collaborate with the Platform team to enhance these processes.
Focus on hardening our Kubernetes environments and securing cloud services. Implement security policies, review access controls, and ensure that our cloud infrastructure is resilient against threats.
Engage in cross-team meetings to discuss upcoming projects, share security insights, and align on security practices across different phases of software development and deployment.
Dedicate time to learning about new security technologies, trends, and practices. Participate in webinars, workshops, or team knowledge-sharing sessions to stay ahead of the curve.
Review security dashboards and metrics to monitor the health and security posture of our infrastructure. Make adjustments to security monitoring tools and dashboards based on trends and insights.
Contribute to the security strategy and planning future initiatives. This might include researching new tools, proposing security improvements, or preparing for security audits.
We’re looking for candidates who have:
Profound expertise in implementing Infrastructure as Code (IaC) with tools like Terraform, focusing on security configurations and best practices.
Comprehensive experience in securing AWS environments, including managing AWS organizations, multi-account, multi-region architectures, and implementing robust security measures across AWS services like IAM, S3, EC2, EKS, RDS, MSK, and Lambda.
Deep understanding and practical experience in securing and managing multi-tenant Kubernetes clusters in production settings. Knowledge of service meshes and their security aspects would be advantageous.
Demonstrated ability in developing and maintaining CI/CD pipelines with a security focus, utilizing technologies such as Github Actions, Jenkins, Helm, and containerization tools like Docker and Kubernetes, to ensure secure deployment practices.
Proficiency in programming and scripting with languages such as Java, Python, or shell scripting, with a focus on creating secure applications and tools.
Experience developing centralized security dashboards by integrating API’s from various security tools, providing real-time visibility into our security posture and enabling proactive threat detection and response.
Knowledge of streaming technologies such as Kafka, Spark, AWS Kinesis, with a focus on securing data streams.
Familiarity with the Incident Response process and tooling (e.g., PagerDuty), and understanding of how to prepare and respond to security incidents within cloud and Kubernetes environments.
Experience operating within standards-compliant environments (e.g., ISO-27001, NIST 800-171, SOC 2), with a strong understanding of the necessary security controls and compliance requirements.
A keen interest in cryptocurrencies and blockchain technologies, with a willingness to deepen knowledge in these areas, especially regarding their security challenges and solutions.
Strong communication skills, both written and verbal, ability to work in a dynamic environment, adaptability to rapidly changing priorities, and a collaborative mindset that thrives in a team-oriented setting.
Nice to have experience:
Security Certifications: Certifications such as CISSP, CEH, or cloud-specific security certifications (AWS Certified Security Specialty, Google Cloud Professional Security Engineer) are highly regarded but not mandatory.
Practical knowledge of application security methodologies, including static application security testing (SAST), dynamic application security testing (DAST), and software composition analysis (SCA).
Curiosity and initial exploration into the security implications of emerging technologies like AI, ML, Generative AI (GenAI), and large language models (LLM). Understanding how these technologies can be leveraged for security enhancements or pose new security challenges is valuable.
Experience in building and optimizing logging pipelines for the efficient collection, normalization, and ingestion of logs into Security Information and Event Management (SIEM) systems. Familiarity with tools and practices for log aggregation, parsing, and the creation of actionable security insights through effective SIEM dashboarding and alerting.
Technologies we use:
Java, Python
Terraform, Ansible
AWS, GCP
Kubernetes, Docker
Github, Github Actions, Jenkins
CSPM, CNAPP, CIEM, SIEM
SCA, SAST, DAST
AI, ML, GenAI, LLM
About Chainalysis
Blockchain technology is powering a growing wave of innovation. Businesses and governments around the world are using blockchains to make banking more efficient, connect with their customers, and investigate criminal cases. As adoption of blockchain technology grows, more and more organizations seek access to all this ecosystem has to offer. That’s where Chainalysis comes in. We provide complete knowledge of what’s happening on blockchains through our data, services, and solutions. With Chainalysis, organizations can navigate blockchains safely and with confidence.
You belong here.
At Chainalysis, we believe that diversity of experience and thought makes us stronger. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us. Some of the ways we’re ensuring we keep learning are an internal Diversity Committee, Days of Reflection throughout the year including International Women’s Day, Harvey Milk Day, World Humanitarian Day, and UN International Migrants Day, and a commitment to continue revisiting and reevaluating our diversity culture.
We encourage applicants across any race, ethnicity, gender/gender expression, age, spirituality, ability, experience and more. If you need any accommodations to make our interview process more accessible to you due to a disability, don't hesitate to let us know. You can learn more here. We can’t wait to meet you.