Binance - Security Engineer (Python, CICD/AWS)

• Build production-grade security applications and services using Python • Develop internal security platforms and tooling from scratch • Create security APIs and integrations with existing systems • Build automation to detect misconfigurations, enforce security baselines and automate security reviews and alerts • Design and implement AI-powered security integrations • Design and enforce secure cloud architectures (AWS) • Implement policy enforcement for IAM least-privilege models, secrets management (e.g., Vault, SSM, Sealed Secrets) and security groups and private networking • Secure CI/CD pipelines (GitHub Actions) to prevent secret leakage and enforce signed artifacts and immutable builds • Own code and artifact scanning: SAST / DAST, dependency & SBOM scanning, container image scanning • Define security gates that balance developer velocity and risk • Improve runtime security controls: detection of suspicious activity and abuse prevention • Policy enforcement in production • Partner with teams on threat modeling and secure design reviews • Support incident response and post-mortems from a security perspective • Drive continuous improvement from security incidents and near-misses • Lead technical aspects of security incident investigations • Strong experience in Infrastructure / Platform / Cloud Security • Advanced Python development skills (not just scripting—building production software) • Hands-on with CI/CD security tooling • Experience building security applications and platforms • Software design patterns and engineering best practices • Cloud platforms: AWS • CI/CD systems • Infrastructure as Code • Python software development (APIs, services, tooling) • Automation-first, not manual checklists • Strong communicator who can influence engineers • Comfortable operating in fast-moving, production environments • Software engineering mindset applied to security problems