Senior Security Engineer

About NEAR Foundation

NEAR Foundation supports the growth of the NEAR ecosystem — including NEAR AI, NEAR Intents, and the underlying NEAR Protocol — across multiple entities and product nodes. Strong IT and security underpin everything we do, and we are scaling the function to match the size and complexity of the ecosystem.

About the Role

We are hiring a Senior IT Security Engineer to be the deep technical owner of our information security work. This is a senior individual contributor role for someone who has spent years operating at the engineering edge of IT and security and is now looking for broad scope and meaningful ownership.

You will bring the technical depth to design, harden, and automate the security systems and controls our team and ecosystem rely on, and you will lead our information security program end-to-end. You will work alongside our IT Director, who owns the broader IT function, and partner with our IT Operations team, who handle day-to-day support and provisioning — letting you focus squarely on security engineering and program leadership. Near-term priorities include leading SOC II Type 2 and ISO 27001 readiness at NEAR AI, supporting the needs of the NEAR Security Committee (NSC), and partnering with the incoming NEAR Intents Head of Security on shared standards.

What You'll Do

Information Security Program

• Lead the information security program across NEAR Foundation, with a dotted line into NEAR Intents’ security leadership on shared work.
• Drive SOC II Type 2 and ISO 27001 readiness and ongoing compliance at NEAR AI: control design, evidence collection, auditor liaison, and remediation.
• Support the needs and operation of the NEAR Security Committee (NSC).
• Run logging, monitoring, and alerting; lead investigation and response for security incidents.
• Run vulnerability management, third-party risk reviews, and security awareness across the organization.

Security Engineering

• Own the security architecture and hardening of our identity, access, and endpoint stack (SSO/MFA, MDM, EDR, conditional access, privileged access) — partnering with the IT Director and IT Operations team on day-to-day operations.
• Engineer security and compliance automation across our SaaS estate — evidence collection, control monitoring, access reviews, and workflows that tighten controls and reduce manual work.
• Be the senior technical escalation point for complex security issues across the organization.
• Lead security tooling rollouts and security vendor selection; provide deep security input into the broader IT roadmap and technical due diligence.

Cloud and Policy

• Help maintain a secure cloud footprint (AWS / GCP) — baseline configuration, secrets management, and posture monitoring — in partnership with infrastructure and product teams.
• Maintain the security policy library; ensure policies are accurate, enforced, and updated as we evolve.

What We're Looking For

• 7+ years in information security with strong IT engineering depth, including meaningful time as a senior IC owning programs end-to-end.
• Demonstrated ownership of SOC II Type 2 and ideally ISO 27001 readiness and audit cycles in a fast-moving environment.
• Deep hands-on experience across IAM, endpoint, and at least one cloud (AWS or GCP).
• Comfortable scripting (Python, Go, or Bash) and automating IT and security workflows.
• Practical experience with SSO/IdP platforms (Okta, Google Workspace, Entra), MDM/EDR tooling, and modern logging/SIEM stacks.
• Strong written communication — clear policy, clean post-incident reviews, credible audit narratives.
• Pragmatic about risk and process; calm under pressure; bias to action.
• Crypto or AI/ML exposure is a plus.

Why This Role

Clear mandate, executive sponsorship, and real scope across IT and security in a fast-moving ecosystem. Senior IC role with strong path to broader security leadership as the program matures.

Compensation and Benefits

A competitive compensation aligned with senior-level security engineering roles across leading AI and Web3 organizations, including a combination of salary and NEAR token incentives. Benefits include comprehensive healthcare coverage, a remote-first work environment, and a professional development and learning budget.

We value

• ECOSYSTEM-FIRST: always put the health and success of the ecosystem above any individual's interest
• OPENNESS: operate transparently and consistently share knowledge to build open communities
• PRAGMATISM OVER PERFECTION: find the right solution not the ideal solution and beat dogmatism by openly considering all ideas
• MAKE IT FEEL SIMPLE: strive to make the complex feel simple so the technology is accessible to all
• GROW CONSTANTLY: learn, improve and fail productively so the project and community are always becoming more effective

NEAR is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information. NEAR is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please let your recruiter know during the interview process.