cover image
MoonPay

MoonPay

www.moonpay.com

2 Jobs

340 Employees

About the Company

We are MoonPay. Architects of the future, inventors, artists, and authors of innovation.

Our vision? To unlock digital ownership for everyone. We are onboarding the world to Web3, where people can own and control their digital identity, data, property, and money.

MoonPay is the world’s leading Web3 infrastructure company. We provide end-to-end solutions for payments, enterprise-scale smart contract development, and digital asset management. Many of the world's most iconic brands rely on MoonPay to power their Web3 strategies and ideas.

Now boarding the next generation of leaders. Come help us build what's next.

Listed Jobs

Company background Company brand
Company Name
MoonPay
Job Title
IT Engineer
Job Description
**Job Title** IT Engineer **Role Summary** Design, build, and maintain automation and integration solutions across core business platforms. Lead monitoring, support, and incident response for corporate services, iPaaS, and authentication systems while documenting best practices and SOPs. **Expectations** - Deliver reliable, scalable integrations in a fast‑paced environment. - Exhibit ownership of system reliability, security, and compliance. - Communicate effectively with cross‑functional teams. - Drive continuous improvement and tool evangelism. **Key Responsibilities** - Develop and maintain custom applications in iPaaS platforms (Workato, Fivetrans). - Manage authentication (Okta) and collaboration services (GSuite, Slack, Zoom). - Build, support, and monitor applications within the corporate services portfolio. - Create, update, and enforce IT engineering best‑practice policies and documentation. - Lead incident response activities and troubleshoot complex issues. - Serve as an escalation point for the IT organization. - Test, implement, and refine IT systems and controls (IaC, Cloud, SIEM). - Identify and define system requirements, produce playbooks, and standard operating procedures. - Promote adoption of new tools and technologies across the team. **Required Skills** - 5+ years administering JAMF, Okta, or analogous identity/endpoint solutions. - Proficiency with iPaaS (Workato, Fivetrans, or similar). - Scripting expertise (Bash, PowerShell, Python). - SQL knowledge and fundamentals of data warehousing. - Cloud experience (GCP or AWS) and Infrastructure‑as‑Code (Terraform). - Familiarity with SIEM platforms (Datadog, Splunk, Google Chronicle). - Strong troubleshooting, critical‑thinking, and problem‑solving abilities. - Basic web development (HTML, CSS) and understanding of network/web protocols. - Excellent written and verbal communication. - Willingness to travel domestically or internationally as needed. **Required Education & Certifications** - Bachelor’s degree in Computer Science, Information Systems, or related field preferred (experience considered equivalent). - Certifications: Okta Certified Administrator, JAMF Certified Administrator, or equivalent credentials highly desirable. ---
New york, United states
Hybrid
Mid level
02-02-2026
Company background Company brand
Company Name
MoonPay
Job Title
Application Security Engineer
Job Description
**Job Title:** Application Security Engineer **Role Summary:** Execute comprehensive application security activities across the software development lifecycle, including threat modeling, penetration testing, bug‑bounty triage, and application‑layer defense management. Collaborate with engineering to embed secure design principles, provide actionable guidance, and elevate the organization’s security posture. **Expectations:** - Deliver timely, practical security recommendations during design reviews. - Perform white‑box and source‑code‑assisted assessments, vulnerability scans, and proof‑of‑concept exploits. - Investigate, validate, and drive remediation of bug‑bounty findings. - Maintain and tune Cloudflare WAF and related application protections. - Research emerging threats, produce mitigation strategies, and update security standards. - Lead or support incident‑response activities from investigation to post‑incident review. **Key Responsibilities:** - Conduct threat‑modeling reviews of Technical Design Documents and new feature proposals. - Execute application security assessments (penetration tests, vulnerability scans, PoC development). - Triage and respond to bug‑bounty submissions, coordinating remediation with engineering. - Own application‑layer protection controls, including Cloudflare WAF configuration and tuning. - Partner with development teams to embed security best practices throughout the SDLC. - Research and monitor new threats/vulnerabilities, translating findings into actionable mitigations. - Create, maintain, and evolve security standards, processes, and documentation. - Develop and deliver security training and awareness sessions for engineering staff. - Participate in incident‑response activities, supporting containment, remediation, and post‑incident improvements. **Required Skills:** - Strong threat‑modeling and risk‑analysis capabilities. - Hands‑on experience with white‑box penetration testing and source‑code review. - Proficiency in vulnerability scanning tools and PoC development. - Knowledge of application‑layer defenses, especially Cloudflare WAF and related security controls. - Experience with bug‑bounty program management and triage. - Familiarity with SDLC integration of security (CI/CD, DevSecOps). - Ability to research, document, and communicate security findings to technical and non‑technical audiences. - Incident‑response knowledge, including investigation, containment, and remediation. **Required Education & Certifications:** - Bachelor’s degree (or higher) in Computer Science, Information Security, or related field, or equivalent work experience. - Professional certifications such as OSCP, CEH, CISSP, GPEN, or equivalent are preferred. - Demonstrated breadth of experience in web, mobile, infrastructure, and cloud application security.
London, United kingdom
Hybrid
05-03-2026