At a Glance
- Tasks: Own product security, shape threat models, and lead compliance for cutting-edge digital assets.
- Company: Join Project Eleven, a pioneering lab at the forefront of quantum computing and cryptography.
- Benefits: Fully remote role with competitive salary and opportunities for professional growth.
- Other info: Collaborative environment focused on innovation and diversity.
- Why this job: Make a real impact in securing the future of digital assets in a post-quantum world.
- Qualifications: 5+ years in security engineering with strong applied cryptography knowledge.
The predicted salary is between 80000 - 100000 € per year.
About Project Eleven
Project Eleven is an applied lab of builders and technologists working at the intersection of quantum computing and cryptography. We build impactful solutions that push the digital-asset ecosystem to a more secure future. Our focus is post-quantum migration: upgrading wallets, identity, and settlement rails to quantum-safe primitives without breaking UX, composability, and developer workflows. Our mission is to future-proof digital assets and preserve self-sovereignty in a post-quantum world. We do that by building the canonical tooling and products teams can adopt: crypto-agile infrastructure, reference implementations, and integrations that fit real constraints like latency, cost, compatibility, key rotation, and recovery. We work with leading ecosystems to make this migration real through products we build, audits, testnets, and cutting-edge research. The vision we have is clear: a proven upgrade path, production-ready tooling and users retaining control of their assets and identity, before CRQC exists.
The role
We're hiring a Senior Security Engineer to own product and platform security across Project Eleven. You'll set the security posture for our institutional product where security and trust of our systems matter most to our customers. This is a high-ownership role with broad scope. You'll shape threat models, harden services and supply chain, lead our compliance program, and partner closely with engineering to ship secure by default. This role is a full-time, fully remote position in Europe (GMT to GMT+2).
What you'll be responsible for
- Owning the security posture of our institutional product end-to-end: threat models, secure design reviews, sensitive operational procedures, incident response
- Partnering with engineering on secure design across our backend systems, including review of cryptographic protocols and integrations
- Building out our application security program: secure SDLC, code review standards, supply chain hardening, dependency scanning, secrets management
- Establishing and operating vulnerability management, penetration testing cadence, and bug bounty as we scale
- Developing our incident response capability: runbooks, on-call rotation, postmortem culture
- Collaborating on our compliance program (SOC 2 Type II as the first milestone) and establishing controls, policies, and evidence collection that hold up to institutional due diligence
- Acting as the security voice in customer conversations, due diligence questionnaires, and security reviews with institutional buyers
What you bring
- 5+ years in security engineering, with significant ownership of a production security program (not purely advisory or audit-side)
- Experience securing systems at meaningful scale with strong correctness, durability, or regulatory requirements
- Strong applied cryptography knowledge: key management, signing protocols, secure key handling at rest and in use
- Experience taking an organisation through SOC 2, ISO 27001, or equivalent
- Hands-on experience with cloud security (AWS) and modern deployment platforms; comfortable reading and writing infrastructure code
- Track record of partnering with engineering teams rather than gating them; you ship security improvements as code and policy, not just tickets
- Strong threat modeling instincts and the ability to make pragmatic risk tradeoffs in a fast-moving startup environment
- Strong English communication, including the ability to represent security clearly to institutional customers and auditors
What we'd love to see
- Background in institutional digital-asset infrastructure: custody platforms, exchanges, HSM-backed systems, or regulated financial infrastructure
- Experience with MPC, threshold signing, HSM integration, or other distributed cryptographic protocols in production
- Familiarity with post-quantum cryptography and the operational implications of migrating cryptographic primitives
- Experience running incident response for a security-critical product
- Prior experience as the first security hire at a startup, or building a security function from scratch
- Offensive security background (red team, pentesting, vulnerability research) as a complement to defensive work
- Open-source contributions to security tooling, cryptography, or related infrastructure
Equal Opportunity
We are committed to equal employment opportunity and believe that diverse teams build better products. All qualified applicants will receive consideration without regard to any protected characteristic under applicable law.
Senior Security Engineer employer: Project Eleven
At Project Eleven, we pride ourselves on being an exceptional employer that fosters a culture of innovation and collaboration in the rapidly evolving field of quantum computing and cryptography. Our fully remote work environment allows for flexibility while providing ample opportunities for professional growth and development, ensuring that our team members can thrive as they contribute to meaningful projects that secure the future of digital assets. With a commitment to diversity and equal opportunity, we empower our employees to take ownership of their roles and make impactful contributions to our mission.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Security Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and join online forums. The more connections we make, the better our chances of landing that Senior Security Engineer role.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repo showcasing your security projects, especially those related to cryptography and cloud security. This gives us a chance to demonstrate our hands-on experience and problem-solving abilities.
✨Tip Number 3
Prepare for interviews by brushing up on threat modelling and incident response scenarios. We want to be ready to discuss how we’d handle real-world security challenges at Project Eleven.
✨Tip Number 4
Apply through our website! It’s the best way to ensure our application gets seen by the right people. Plus, it shows we’re genuinely interested in being part of the Project Eleven team.
We think you need these skills to ace Senior Security Engineer
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter for the Senior Security Engineer role. Highlight your experience in security engineering, especially any hands-on work with cryptography and cloud security. We want to see how your skills align with our mission at Project Eleven!
Showcase Your Experience:Don’t just list your previous roles; tell us about your achievements! Share specific examples of how you've owned security programs or partnered with engineering teams. We love seeing real-world impact, so let us know how you’ve made a difference.
Be Clear and Concise:When writing your application, keep it straightforward. Use clear language and avoid jargon unless it's relevant to the role. We appreciate a well-structured application that gets straight to the point—this reflects the clarity we value in our security practices.
Apply Through Our Website:We encourage you to apply directly through our website. This helps us streamline the process and ensures your application gets the attention it deserves. Plus, it’s the best way to stay updated on your application status!
How to prepare for a job interview at Project Eleven
✨Know Your Stuff
Make sure you brush up on your applied cryptography knowledge and security engineering principles. Be ready to discuss your experience with key management, secure design reviews, and incident response. The more you can demonstrate your expertise, the better!
✨Showcase Your Collaboration Skills
This role requires a lot of teamwork with engineering, so be prepared to share examples of how you've partnered with developers in the past. Highlight instances where you’ve shipped security improvements as code and policy, rather than just filing tickets.
✨Prepare for Technical Questions
Expect to dive deep into threat modeling and vulnerability management. Brush up on your knowledge of cloud security, especially AWS, and be ready to discuss how you would approach securing backend systems and cryptographic protocols.
✨Communicate Clearly
Strong communication skills are a must, especially when discussing security with institutional customers. Practice explaining complex security concepts in simple terms, as you'll need to convey your ideas clearly during the interview.
