Security Engineer, Compliance
Posted 3 days 16 hours ago by Zebedee
Permanent
Full Time
Other
London, United Kingdom
Job Description
Security Engineer, Compliance
Description The ZBD app lets users jump into a universe of games and apps, connect with friends and earn Bitcoin while having fun. ZBD also empowers developers to embed bitcoin payments into video games and applications, such as podcasting and music streaming. ZBD's unique proposition enables these partner developers to better monetize their games and apps by allowing users to receive micro-rewards for actions taken in the game or app. ZBD provides this functionality by leveraging Bitcoin and the Lightning Network protocol.
The business comprises almost 70 employees - across business development, marketing, compliance, operations, engineering, customer success and customer support - from Los Angeles to New York, London, Amsterdam and São Paulo.
ZBD is a fully remote company. We hire, retain and develop the best talent from around the world. As a result, every member of the ZBD team must demonstrate an ability to work independently and thrive in a remote environment.
ZBD is seeking a Security Compliance Engineer to design, implement, and maintain our organization's security compliance framework and risk management programs. This role bridges technical security implementation with regulatory compliance and risk assessment. You should be comfortable working in a growth-stage startup, with comfort navigating ambiguity and fast-paced environments. Come build, secure, automate, and monitor with the ZBD team!
Key Responsibilities
Skills, Knowledge and Expertise
Bonus
Application Deadline: 12 October 2025
Department: Engineering
Employment Type: Full Time
Location: Remote
Description The ZBD app lets users jump into a universe of games and apps, connect with friends and earn Bitcoin while having fun. ZBD also empowers developers to embed bitcoin payments into video games and applications, such as podcasting and music streaming. ZBD's unique proposition enables these partner developers to better monetize their games and apps by allowing users to receive micro-rewards for actions taken in the game or app. ZBD provides this functionality by leveraging Bitcoin and the Lightning Network protocol.
The business comprises almost 70 employees - across business development, marketing, compliance, operations, engineering, customer success and customer support - from Los Angeles to New York, London, Amsterdam and São Paulo.
ZBD is a fully remote company. We hire, retain and develop the best talent from around the world. As a result, every member of the ZBD team must demonstrate an ability to work independently and thrive in a remote environment.
ZBD is seeking a Security Compliance Engineer to design, implement, and maintain our organization's security compliance framework and risk management programs. This role bridges technical security implementation with regulatory compliance and risk assessment. You should be comfortable working in a growth-stage startup, with comfort navigating ambiguity and fast-paced environments. Come build, secure, automate, and monitor with the ZBD team!
Key Responsibilities
- Design, implement, and maintain security solutions to address vulnerabilities and risks within ZBD systems
- Work closely with the software engineers and developers to establish and keep a strong security compliance posture
- Develop and enforce technical security standards, patterns, and best practices to establish and maintain a consistent and robust security posture across ZBD systems
- Proactively identify and address security & policy gaps in existing systems and architectures, recommending and implementing enhancements to strengthen ZBD's overall security posture
- Contribute to the development and maintenance of security documentation, including policies, procedures, and technical guides
- Bring and keep ZBD systems, processes, and procedures into compliance with relevant compliance frameworks (SOC 2, DORA, GDPR, PCI DSS, etc.)
- Develop and maintain cloud recovery and backup solutions to ensure availability and business continuity
- Participate in an On-Call rotation
- Document processes & procedures
Skills, Knowledge and Expertise
- 3+ years of experience in security governance, cloud and application security assessments, risk management, and/or third party risk.
- Thorough understanding of cybersecurity principles, cloud security, and identity and access management
- Firm grasp on cloud computing principles
- Demonstrated experience with Infrastructure as Code using Terraform/OpenTofu.
- Working knowledge of Linux.
- Experience with metrics gathering, alerting, reporting.
- Experience with CI/CD pipelines.
- Ability to design, implement, and improve cybersecurity solutions.
- Ability to balance cybersecurity initiatives with business initiatives.
- Ability to identify and analyze potential methods of attack.
Bonus
- Setup Gitlab CI/CD pipelines.
- Experience with AWS Organizations and Multi Accounts.
- Has participated in efforts to keep compliance with SOC 2 controls
- Experience in developing or working with SIEM or log management solutions.
- Knowledge of, and experience working with Bitcoin and Lightning Network software.