Security Engineer, Compliance

Application Deadline:

12 October 2025Department:

EngineeringEmployment Type:

Full TimeLocation:

Remote

Description

The ZBD app lets users jump into a universe of games and apps, connect with friends and earn Bitcoin while having fun. ZBD also empowers developers to embed bitcoin payments into video games and applications, such as podcasting and music streaming. ZBD’s unique proposition enables these partner developers to better monetize their games and apps by allowing users to receive micro-rewards for actions taken in the game or app. ZBD provides this functionality by leveraging Bitcoin and the Lightning Network protocol.The business comprises almost 70 employees - across business development, marketing, compliance, operations, engineering, customer success and customer support - from Los Angeles to New York, London, Amsterdam and São Paulo.ZBD is a fully remote company. We hire, retain and develop the best talent from around the world. As a result, every member of the ZBD team must demonstrate an ability to work independently and thrive in a remote environment.

ZBD is seeking a Security Compliance Engineer to design, implement, and maintain our organization''s security compliance framework and risk management programs. This role bridges technical security implementation with regulatory compliance and risk assessment. You should be comfortable working in a

growth-stage startup , with comfort navigating ambiguity and fast-paced environments. Come build, secure, automate, and monitor with the ZBD team!

Key Responsibilities

Design, implement, and maintain security solutions to address vulnerabilities and risks within ZBD systemsWork closely with the software engineers and developers to establish and keep a strong security compliance postureDevelop and enforce technical security standards, patterns, and best practices to establish and maintain a consistent and robust security posture across ZBD systemsProactively identify and address security and policy gaps in existing systems and architectures, recommending and implementing enhancements to strengthen ZBD’s overall security postureContribute to the development and maintenance of security documentation, including policies, procedures, and technical guidesBring and keep ZBD systems, processes, and procedures into compliance with relevant compliance frameworks (SOC 2, DORA, GDPR, PCI DSS, etc.)Develop and maintain cloud recovery and backup solutions to ensure availability and business continuityParticipate in an On-Call rotationDocument processes and procedures

Skills, Knowledge and Expertise

3+ years of experience in security governance, cloud and application security assessments, risk management, and/or third party risk.Thorough understanding of cybersecurity principles, cloud security, and identity and access managementFirm grasp on cloud computing principlesDemonstrated experience with Infrastructure as Code using Terraform/OpenTofu.Working knowledge of Linux.Experience with metrics gathering, alerting, reporting.Experience with CI/CD pipelines.Ability to design, implement, and improve cybersecurity solutions.Ability to balance cybersecurity initiatives with business initiatives.Ability to identify and analyze potential methods of attack.

Bonus

Setup Gitlab CI/CD pipelines.Experience with AWS Organizations and Multi Accounts.Has participated in efforts to keep compliance with SOC 2 controlsExperience in developing or working with SIEM or log management solutions.Knowledge of, and experience working with Bitcoin and Lightning Network software.

#J-18808-Ljbffr