Senior Platform Security Engineer

About the Company Gemini is a global crypto and Web3 platform founded by Cameron and Tyler Winklevoss in 2014, offering a wide range of simple, reliable, and secure crypto products and services to individuals and institutions in over 70 countries. Our mission is to unlock the next era of financial, creative, and personal freedom by providing trusted access to the decentralized future. We envision a world where crypto reshapes the global financial system, internet, and money to create greater choice, independence, and opportunity for all — bridging traditional finance with the emerging cryptoeconomy in a way that is more open, fair, and secure. As a publicly traded company, Gemini is poised to accelerate this vision with greater scale, reach, and impact. The Department: Platform Security The Platform Security team secures Gemini's infrastructure through service hardening and&nbsp;by developing and supporting a suite of foundational tools. We provide secure-by-default&nbsp;infrastructure, consumable security services, and expert consultation to engineering teams&nbsp;for secure cloud and non-cloud infrastructure. The Role: Senior Platform Security Engineer The Platform Security team secures Gemini's infrastructure through service hardening and&nbsp;by developing and supporting a suite of foundational tools. As a Senior Platform Security&nbsp;Engineer, you will build and maintain security controls across diverse environments—from&nbsp;hardening cloud and container orchestration systems to enhancing our non-cloud&nbsp;infrastructure. This is a hands-on engineering role where you'll write production code daily,&nbsp;not just configuration. You'll own security initiatives from design through production operations. This role requires strong software development skills, practical experience with AWS and Kubernetes security, and the ability to partner with engineering teams to enable secure delivery. You will also apply expertise in critical neighboring areas, including PKI, core cryptography, identity management, and network security, to ensure comprehensive protection across the stack. This role is required to be in person twice a week at our New York City, NY office. Responsibilities: Build and maintain security controls for AWS and Kubernetes (EKS) environments,&nbsp;including guardrails, container security scanning, and infrastructure-as-code&nbsp;(Terraform) security Support IAM initiatives by helping to design and maintain access controls, role-based access control (RBAC) models, and identity governance workflows Design, deploy, and maintain internal security services and platforms that other engineering teams rely on Act as a security partner to engineering teams, helping them make secure architecture decisions without blocking innovation Work across functions—partnering with AppSec, Threat Detection, and GRC—to identify and reduce risk across the entire stack Participate in on-call rotation for platform security incidents Minimum Qualifications:</