Stripe

Who we are About Stripe Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world’s largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone’s reach while doing the most important work of your career. About the team The Secrets Infrastructure team provides the cryptographic identity and secrets management foundation for Stripe. We build and operate the internal certificate authority that authenticates every person and service at Stripe, and the secrets platform that manages everything from financial partner credentials to infrastructure access keys. We build foundational security infrastructure at scale: our certificate authority issues mTLS client certificate identities for thousands of services and engineers, and our secrets platform and libraries protect access to critical financial systems and external partners across all of Stripe’s codebases, services, and platforms. The technical challenges include building systems with 99.99%+ availability, implementing TLS workload identity and attestation logic for new platforms, and designing secret management tools that are both secure and user-friendly. Our infrastructure must be both reliable and developer-friendly—we maintain libraries in Go, Java, Ruby, and Python. As a small team responsible for critical systems, engineers take on meaningful ownership. Through collaboration with teams across Stripe, you'll build and set direction for the authentication and secrets management underpin identity in distributed systems at scale. Secrets Infrastructure is a fully remote team, with a small presence in the Seattle and New York City offices. We pride ourselves on a friendly, technically rigorous, and supportive team culture. What you'll do You'll be responsible for TLS identity and secrets infrastructure that every Stripe service depends on. You'll build infrastructure, developer tools, and guide partner teams on architecture decisions; we regularly need to help other teams reason about cryptographic primitives and PKI, transitive trust, potential failure modes and threat models. Since our infrastructure and libraries are used across the entire Stripe codebase, you'll work in Go, Java, Ruby, and Python. The services we own are written in Go, so most of your hands-on work will be in Go. The typical balance of hands-on work is about 60% coding, 20% infrastructure work, and 20% security design/guidance with partner teams. Responsibilities - Design and implement significant features in our certificate authority and secrets management systems - Work across Go, Java, Ruby, and Python to implement authentication and secrets infrastructure used by every service at Stripe - Work with with other engineering teams to understand their needs and design secrets and identity integrations - Develop certificate provisioning and secret management integrations for various compute platforms (Kubernetes, EC2, developer workstations) - Work on reliability improvements to maintain 99.99%+ availability for critical infrastructure; we take pride in making failure modes impossible instead of reacting to them - Participate in on-call rotation for critical infrastructure, working alongside senior engineers to debug and resolve production issues Who you

About the team The Product Security Data Platforms team is a newly established engineering team within Stripe Security. Our mission is to build the foundational infrastructure that provides our users with unprecedented visibility into the security posture of their Stripe integration. While Stripe is renowned for industry-leading payment protection, we are expanding our focus to provide a comprehensive security telemetry platform that helps businesses protect their entire digital ecosystem on Stripe. As a founding member of this team, you will be architecting a large-scale customer-facing security data pipeline and presentation layer. Much like modern security observability platforms and data lakes that have transformed cloud infrastructure, we are building an API-first service that transforms massive streams of behavioral data into actionable security intelligence. This team operates at the intersection of high-throughput data engineering and cybersecurity, creating the systems that will allow the world’s most sophisticated companies to monitor, detect, and respond to threats in real-time. What you’ll do As a Senior Software Engineer on this founding team, you will lead the technical design and implementation of our core security data pipelines. You will be responsible for defining how security signals are captured, processed at scale, and delivered to our users through robust, developer-friendly interfaces. If you have security domain knowledge, there are significant opportunities for you to help shape product vision. Responsibilities - Architect Scalable Foundations: Design and implement a highly available, low-latency pipeline capable of processing and augmenting millions of events per second into structured security telemetry. - Build API-First Products: Develop the core services and streaming APIs that enable enterprise customers to seamlessly ingest security signals into their own internal security operations centers and analytics tools. - Engineering Security Signals: Partner with security researchers and threat detection experts to build the logic that identifies anomalous behavior and surfaces high-fidelity security insights. - Define Technical Strategy: Lead the technical roadmap for the platform, making critical decisions on data modeling, storage strategies, and the abstraction layers that will support future security products. - Drive Engineering Excellence: As a senior leader, you will set the bar for code quality, system resilience, and operational maturity for a product that requires 99.99%+ availability. - Cross-functional Collaboration: Work closely with Stripe’s core platform and data teams to leverage global infrastructure while ensuring security data remains isolated and protected. Who you are We are looking for an experienced backend and systems engineer who thrives on building new products from scratch. You should have a deep background in distributed systems and a passion for building platforms that empower other developers and security professionals. Minimum requirements - 8+ years of professional software development experience , with a history of shipping and maintaining complex, large-scale systems. - Expertise in Data Engineering & Distributed Systems:</strong

Who we are About Privy Our mission is to make privacy and user ownership the default online. We build simple, flexible developer tooling that make it easy to build products that put users first. By leveraging modern cryptography, we shift the status quo around digital ownership and protect the accounts and assets of millions of users. Learn more about Privy: Privy and Stripe: Bringing crypto to everyone What you’ll do The Principal Security Engineer is a senior individual contributor responsible for defining, building, and operating security programs for high-risk financial technology and crypto infrastructure products, including embedded wallets, authentication systems, transaction flows, key management systems, developer platforms, and production cloud services. This role leads security architecture and hands-on technical security work across application security, product security, infrastructure security, incident response, vulnerability management, threat modeling, secure software development, and security automation. The Principal Security Engineer partners directly with engineering, product, infrastructure, compliance, legal, and executive stakeholders to identify and reduce systemic security risk across the company’s most sensitive products and services. The role requires deep expertise in modern software security, cloud-native systems, cryptographic protocols, wallet and blockchain threat models, secure authentication, web application security, vulnerability research, secure SDLC design, and practical incident response. The Principal Security Engineer is expected to operate independently on ambiguous, high-impact security problems; design scalable security controls; review complex architectures; identify exploitable vulnerabilities; build security tooling; guide engineering teams; and represent security judgment in critical product and platform decisions. Responsibilities - Lead security architecture reviews for embedded wallet systems, authentication flows, key management infrastructure, transaction signing systems, crypto custody-adjacent services, and developer-facing APIs. - Conduct advanced threat modeling for web, mobile, cloud, wallet, blockchain, and cryptographic systems. - Identify, validate, prioritize, and drive remediation of vulnerabilities across applications, infrastructure, APIs, CI/CD pipelines, third-party integrations, and production services. - Design and implement scalable security controls, automation, detection, alerting, and monitoring to reduce risk across engineering teams. - Lead or support incident response, security investigations, root-cause analysis, containment, remediation, and post-incident hardening. - Evaluate security implications of new product launches, infrastructure changes, vendor integrations, cryptographic designs, and authentication mechanisms. - Develop security standards, secure engineering guidance, review processes, and technical documentation for engineering teams. - Partner with engineering leadership to embed security into design, development, deployment, and operational workflows. - Manage and triage external vulnerability reports, responsible disclosure submissions, penetration test findings, bug bounty reports, and third-party security assessments. - Perform