Bastion LLC
About Bastion
Bastion enables financial institutions and enterprises to issue regulated stablecoins, generate revenue on reserves, and expand their ecosystems. Bastion's platform combines stablecoin issuance, secure custody, and seamless orchestration for cross-border transfers, on/off-ramps, and stablecoin conversions. With Bastion's platform and APIs, businesses can create and scale their stablecoin network, while optimizing revenue, compliance, and control.
Bastion is hiring a Detection & Response Security Engineer to be the second security team member, helping build the foundation for our incident response and threat detection programs. You'll lead the implementation of security tooling, write and tune alerts, contribute to IR playbooks, and collaborate with engineering to harden infrastructure and apps. This is a hands-on, high-impact role ideal for a builder who enjoys solving ambiguity and scaling security in fast-paced environments.
Responsibilities Develop and tune log-based detections across our AWS infrastructure, application stack, and CI/CD pipelines using CloudTrail, GuardDuty, and custom telemetry. Define detection coverage goals and lead threat modeling efforts across systems and services. Build and maintain incident response playbooks and participate in real-world incident investigations. Educate Bastion employees on secure engineering and operational practices through tailored trainings and documentation. Integrate security best practices into Bastion's infrastructure-as-code and CI/CD workflows to reduce risk by design. Must Haves:
Bachelor's degree in Computer Engineering or a related field. 3+ years of experience in a Detection & Response or Security Operations role, preferably in a high-growth or startup environment. Proficiency in writing and tuning detections using log-based monitoring platforms (e.g., Datadog, Panther, custom pipelines). Hands-on experience with AWS security architecture and services (e.g., CloudTrail, IAM, Security Hub, KMS). Strong scripting or software development skills in at least one language: Python, Go, Rust, or TypeScript. Experience participating in or leading incident response investigations and postmortems. Nice to Haves:
Experience in Web3 security, including blockchain infrastructure. Exposure to regulatory or compliance frameworks such as SOC 2 or ISO 27001. Experience implementing security controls in CI/CD pipelines and infrastructure-as-code environments (e.g., Terraform, GitHub Actions). What We Look For
Ownership and Proactivity:
Demonstrated sense of ownership and accountability, combined with a forward-thinking approach and an unwavering motivation to excel in their designated role. Customer-Centric Mindset:
Proven track record of placing customers at the heart of all decisions, striving beyond satisfaction to truly impress and exceed expectations. Detail-Oriented:
Demonstrated ability to produce high-quality work with meticulous attention to detail, ensuring consistency and precision in every task. Team Player with a Competitive Edge:
Strong collaboration skills, understanding that success is achieved collectively. Continuous Improvement Mindset:
Never settle for the status quo. Always looking for growth opportunities and new challenges, with a vision of powering the future of web3. Recognizes that the journey to excellence is ongoing and embraces the challenge. Empathetic Insight:
Demonstrated ability to understand and share the feelings of others, fostering genuine connections and promoting a supportive environment.
Bastion provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, and placement. Bastion participates in E-Verify to authorize eligibility of employment in the United States.
Bastion enables financial institutions and enterprises to issue regulated stablecoins, generate revenue on reserves, and expand their ecosystems. Bastion's platform combines stablecoin issuance, secure custody, and seamless orchestration for cross-border transfers, on/off-ramps, and stablecoin conversions. With Bastion's platform and APIs, businesses can create and scale their stablecoin network, while optimizing revenue, compliance, and control.
Bastion is hiring a Detection & Response Security Engineer to be the second security team member, helping build the foundation for our incident response and threat detection programs. You'll lead the implementation of security tooling, write and tune alerts, contribute to IR playbooks, and collaborate with engineering to harden infrastructure and apps. This is a hands-on, high-impact role ideal for a builder who enjoys solving ambiguity and scaling security in fast-paced environments.
Responsibilities Develop and tune log-based detections across our AWS infrastructure, application stack, and CI/CD pipelines using CloudTrail, GuardDuty, and custom telemetry. Define detection coverage goals and lead threat modeling efforts across systems and services. Build and maintain incident response playbooks and participate in real-world incident investigations. Educate Bastion employees on secure engineering and operational practices through tailored trainings and documentation. Integrate security best practices into Bastion's infrastructure-as-code and CI/CD workflows to reduce risk by design. Must Haves:
Bachelor's degree in Computer Engineering or a related field. 3+ years of experience in a Detection & Response or Security Operations role, preferably in a high-growth or startup environment. Proficiency in writing and tuning detections using log-based monitoring platforms (e.g., Datadog, Panther, custom pipelines). Hands-on experience with AWS security architecture and services (e.g., CloudTrail, IAM, Security Hub, KMS). Strong scripting or software development skills in at least one language: Python, Go, Rust, or TypeScript. Experience participating in or leading incident response investigations and postmortems. Nice to Haves:
Experience in Web3 security, including blockchain infrastructure. Exposure to regulatory or compliance frameworks such as SOC 2 or ISO 27001. Experience implementing security controls in CI/CD pipelines and infrastructure-as-code environments (e.g., Terraform, GitHub Actions). What We Look For
Ownership and Proactivity:
Demonstrated sense of ownership and accountability, combined with a forward-thinking approach and an unwavering motivation to excel in their designated role. Customer-Centric Mindset:
Proven track record of placing customers at the heart of all decisions, striving beyond satisfaction to truly impress and exceed expectations. Detail-Oriented:
Demonstrated ability to produce high-quality work with meticulous attention to detail, ensuring consistency and precision in every task. Team Player with a Competitive Edge:
Strong collaboration skills, understanding that success is achieved collectively. Continuous Improvement Mindset:
Never settle for the status quo. Always looking for growth opportunities and new challenges, with a vision of powering the future of web3. Recognizes that the journey to excellence is ongoing and embraces the challenge. Empathetic Insight:
Demonstrated ability to understand and share the feelings of others, fostering genuine connections and promoting a supportive environment.
Bastion provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, and placement. Bastion participates in E-Verify to authorize eligibility of employment in the United States.