Senior/Staff Security Engineer - Corporate Security at Phantom

About Phantom

Phantom is revolutionizing how millions interact with the crypto ecosystem with a self-custodial wallet that provides a unified experience for accounts and tokens across Solana, Bitcoin, Ethereum, and Polygon. By combining advanced security features and innovative tools for a personalized user experience, Phantom delivers a next-generation, safe and easy to use multi-chain wallet. Our approach has driven rapid growth, including surpassing 15 million monthly active users, reaching #1 in the Google Play finance category, and consistently ranking as a Top 50 app across categories.

Role Overview

We are hiring a Senior/Staff Security Engineer to own and scale corporate security for Phantom. This foundational role will be our first dedicated corporate security hire, working closely with the Head of Security to build enterprise security capabilities from the ground up. You will protect our distributed workforce, secure corporate systems, and enable the company to move fast without compromising safety. This role spans security engineering, IT operations, and risk management, focusing on controls that are robust and user-friendly.

What You Will Do

Build & Secure Corporate Infrastructure

• Design, implement, and manage security for corporate endpoints across a fully distributed workforce.
• Deploy and operate the corporate security stack, including MDM, EDR/XDR, ZTNA, and SSO.
• Implement zero-trust architecture principles such as device trust, conditional access, and least-privilege controls.
• Enforce security baselines, hardening standards, and compliance policies across corporate systems.
• Build and maintain secure authentication systems and identity management workflows.

Drive Security Initiatives & Risk Reduction

• Lead initiatives for endpoint hardening, access controls, and corporate infrastructure protection.
• Conduct security design reviews and risk assessments for new services, tools, and integrations.
• Perform vulnerability assessments and drive remediation across corporate systems.
• Partner with IT and cross-functional teams to balance security requirements with business velocity.
• Develop and enforce IT security policies, standards, and procedures aligned with industry best practices.

Detection, Response & Automation

• Respond to security incidents and events impacting corporate systems with technical depth and urgency.
• Collaborate with Detection & Response to build detection rules, alerts, and monitoring for corporate threats.
• Automate security workflows using Python, Go, or similar languages to reduce manual toil.
• Create runbooks and playbooks for common security scenarios.
• Leverage security tooling and automation to scale security operations efficiently.

Security Culture & Education

• Evangelize security best practices through training and internal communications.
• Build security awareness programs that empower employees to make secure decisions.
• Partner with engineering teams to embed secure-by-default principles into development workflows.
• Serve as a trusted security advisor across the organization.

Qualifications

Must-Have

• 5+ years of experience in corporate/enterprise security, IT security, or endpoint security engineering.
• Hands-on expertise with MDM platforms such as JAMF, Kandji, Intune, or similar for macOS and iOS fleet management.
• Experience with EDR/XDR solutions like CrowdStrike, SentinelOne, Microsoft Defender, or similar.
• Identity and access management experience with Okta, Azure AD/Entra ID, or similar SSO/IAM platforms.
• Familiarity with authentication protocols such as SAML, OAuth, OIDC, and SCIM.
• Practical knowledge of zero-trust architecture including device trust, conditional access, and least-privilege models.
• Strong scripting and automation skills in Python, Go, or Bash for security automation and tooling.
• Cloud security experience with AWS, GCP, or Azure.
• macOS security expertise including hardening and fleet management.
• Proven ability to independently manage projects, navigate ambiguity, and drive initiatives to completion.
• Strong collaboration and communication skills, with the ability to translate security requirements for non-technical stakeholders.

Nice-to-Have

• Experience in crypto, Web3, or fintech environments such as exchanges, wallets, DeFi, or startups.
• Detection engineering background, including SIEM, log analysis, threat hunting, or SOC operations.
• Familiarity with modern adversary tactics, techniques, and procedures including social engineering and phishing.
• Security compliance experience such as SOC 2 or ISO 27001.
• Experience implementing BYOD security models for contractors and vendors.

What Makes You Successful Here

• Ownership mentality - you identify problems, propose solutions, and execute with autonomy.
• Extreme urgency - you thrive in high-velocity environments and can ship quickly without sacrificing quality.
• Builder's mindset - you design elegant solutions that protect without creating friction.
• Technical depth - you can dive deep into complex problems and architect scalable solutions.
• Pragmatic security - you balance best practices with business needs and user experience.
• Growth mindset - you embrace new technologies and stay current with evolving threats.

Why Work with Us

Join a team of experienced builders in blockchain and crypto focused on a secure and seamless wallet experience. We have grown rapidly by making access to crypto intuitive and safe, and we continue to innovate across multiple chains including Solana, Ethereum, Polygon, and Bitcoin. This is an opportunity to shape corporate security at a high-growth company and help protect a global, distributed workforce while enabling product velocity.

Benefits

• Health Insurance - comprehensive medical, dental, and vision coverage.
• Equity/Stock Options as part of compensation.
• Home Office Stipend to set up your ideal remote environment.
• Flexible hours and a supportive remote work environment.
• Unlimited PTO - take time when you need it.
• 401(k) / Retirement Plans.
• Wellness Programs including a monthly wellness benefit.
• Company Retreats and global off-sites.

Compensation

Target base salary range: $225,000 to $285,000, plus equity and benefits. Actual offers are based on factors including skillset, relevant experience, interview performance, and market factors such as location.

Diversity and Inclusion

We strongly encourage candidates from diverse backgrounds to apply. We believe a variety of perspectives strengthens our work, and we are committed to building an inclusive, supportive environment where you can do the best work of your career.

How to Apply

Apply via the job posting link. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.