Senior Product Security Engineer
Galileo Financial Technologies
Employee Applicant Privacy Notice
Who we are:
Welcoming, collaborative and having the opportunity to make an impact - is how our employees describe working here. Galileo is a financial technology company that provides innovative and revolutionary software products and services that power some of the world's largest Fintechs. We are the only payments innovator that applies tech and engineering capabilities to empower Fintechs and financial institutions to unleash their full creativity to achieve their most inspired goals. Galileo leads its industry with superior fraud detection, security, decision-making analytics and regulatory compliance functionality combined with customized, responsive and flexible programs to accelerate the success of all payments companies and solve tomorrow's payments challenges today. We hire energetic and creative employees while providing them the opportunity to excel in their careers and make a difference for our clients. Learn more about us and why we work here at https://www.galileo-ft.com/working-at-galileo.
About the role
We’re looking for a Senior Product Security Engineer to help lead the protection of our systems and data. In this role, you'll guide product teams to build secure architecture, manage risk, and embed best practices throughout the development lifecycle.
What You’ll Do
-
Advise on secure product and application design (digital assets, DeFi, crypto infra).
-
Translate security needs into clear user stories and actionable items.
-
Lead threat modeling, risk assessment, and security reviews.
-
Work with tools like SAST, DAST, SCA to identify and mitigate risks.
-
Promote "Shift-Left" by embedding security in CI/CD pipelines.
-
Monitor security compliance for banking-related products and processes.
-
Collaborate with engineering and product teams on secure implementation
What We’re Looking For
-
8+ years in product/infrastructure security and cloud technologies.
-
Strong knowledge of AWS, cloud-native environments, SaaS security, and Well Architected Framework.
-
Experience with Docker, Kubernetes, CI/CD pipelines.
-
Familiarity with threat modeling, security reviews, and risk management.
-
Understanding of compliance frameworks (PCI, HIPAA, GDPR, SOX, etc.).
-
Solid communication skills to engage both technical and non-technical stakeholders.
Bonus Points (Nice to Have)
-
Certifications: CISSP, GSEC, AWS Security Speciality.
-
Master's or PhD in Computer Science or Engineering.
-
Previous experience in financial services or fintech.