About Trojan

Trojan leads the way in cryptocurrency trading, known as the largest Telegram trading bot for facilitating over $28 billion in volume traded by more than 50,000 daily active users. We deliver seamless on-chain trading experiences with advanced tools such as DCA & limit orders, sniping, and automatic wallet copy-trading. Our platform sets the standard in speed, innovation, and reliability.

Why Join Us?

At Trojan, we thrive on innovation and efficiency. Joining our team means contributing to projects that revolutionise the crypto trading landscape. We’re continuously expanding our offerings to elevate user experience and accessibility. This is your chance to contribute to a cutting-edge and widely used product that stands out in a competitive market for its reliability, speed and unmatched features.

Role Overview

We are seeking a Security Engineer (Application Security & DevSecOps) to secure our infrastructure and applications while enabling rapid innovation in our crypto trading ecosystem. This role is essential in safeguarding our platform, ensuring our codebase and cloud infrastructure are resilient against security threats. You will work closely with developers to embed security into our SDLC and proactively identify vulnerabilities across our stack.

Key Responsibilities

Security in DevSecOps:

• Integrate security practices into our development workflows and CI/CD pipeline.
• Automate security testing, vulnerability scanning, and continuous monitoring across our codebase and infrastructure.
• Collaborate with our engineering team to implement secure coding standards and security best practices.
• Manage and maintain cloud security, ensuring that all cloud services (AWS, GCP, etc.) are securely configured.

Application Security:

• Perform regular security audits and vulnerability assessments of our trading bots, APIs, and internal applications.
• Conduct penetration testing and threat modeling to identify and mitigate risks.
• Advise the team on how to securely build and deploy crypto-related software applications.
• Help develop and enforce security policies to secure application environments and data storage.

Incident Response & Risk Mitigation:

• Monitor for security incidents and respond quickly to mitigate any threats to the platform.
• Perform root cause analysis and implement lessons learned to prevent future incidents.
• Provide ongoing security risk assessments for new features and technology integrations.

Collaboration & Cross-Functional Engagement:

• Work closely with our small, agile engineering team to foster a security-first mindset in product development.
• Help educate the team on security threats, trends, and secure coding practices.
• Contribute to company-wide discussions on how to scale securely in a high-growth, fast-paced environment.

Security Monitoring & Automation:

• Set up and maintain security monitoring tools to identify vulnerabilities and threats in real-time.
• Automate routine security tasks, such as patch management and threat detection, to improve efficiency.

Requirements

• Experience: 5+ years hands-on experience in security engineering, with a strong focus on DevSecOps and Application Security.
• Strong knowledge of secure coding practices and the ability to guide teams on how to mitigate security risks.
• Technical Expertise: Experience securing cloud infrastructure (AWS, GCP, etc.) and managing CI/CD pipelines with built-in security measures.
• Familiarity with vulnerability scanning tools, penetration testing, and application security tools (e.g., Burp Suite, OWASP ZAP, Snyk, SonarQube).
• Crypto Knowledge: Familiarity with DeFi and crypto trading platforms.
• Communication: Clear, concise communication to align teams and manage stakeholder expectations.
• Problem-Solving: Proactive mindset to identify issues, propose solutions, and keep projects on track.

Preferred Experience

• Familiarity with CI/CD workflows and collaborative development tools.
• Familiarity with memecoins trading on Solana and related market dynamics.

What We Offer

• Flexibility: Work remotely on your own schedule.
• Growth and Innovation: Be part of a lean team that is constantly evolving and integrating the latest in trading technology.
• Impactful Work: Your contributions will directly shape the user experience of one of the most used trading tools on the market.