Staff Security Engineer, Security Operations

The work:

As a Staff Security Engineer focusing on anti-abuse and brand protection, you will lead the design and development of systems and automation to detect, mitigate, and prevent abuse targeting Ripple's brand, products, and users. This includes identifying phishing campaigns, impersonation attempts, scam tokens, fake domains, and social engineering campaigns across web, mobile, and social platforms. You will collaborate closely with Legal, Communications, Threat Intelligence, and third-party vendors to build a scalable and proactive anti-abuse capability.

What you'll do:

• Detect brand abuse and scams: Develop systems to identify impersonation, phishing, scam tokens, and other threats targeting Ripple's brand and users.
• Automate takedowns: Build tooling and workflows to streamline abuse reporting, enforcement, and takedown actions across vendors and platforms.
• Analyze abuse patterns: Investigate attacker infrastructure and abuse trends to advise proactive defenses.
• Develop internal visibility tools: Create dashboards and alerts to supervise brand abuse, takedown success rates, and emerging threats.
• Lead incident response: Drive investigations for sophisticated abuse cases and help implement long-term preventative measures.
• Guide strategy: Advise on anti-abuse standard methodologies, tooling decisions, and vendor integrations to improve Ripple's external security posture.

What you'll bring:

• 8+ years of experience working within a security, abuse prevention, or threat detection domain, ideally with exposure to large-scale platforms, FinTech, or crypto environments.
• Proficiency in Python, Go, or similar languages for building automation and detection systems.
• Experience investigating scams, phishing, impersonation, or abuse at scale - ideally in FinTech, crypto, or social platforms.
• Ability to analyze abuse trends, extract insights, and drive detection improvements through data.
• Familiarity with abuse reporting and enforcement APIs (e.g., Google Web Risk, social platforms, domain registrars).
• Strong communication skills and an ability to tailor them to various technical/non-technical audiences.
• Passion for stopping bad actors and building trust in crypto ecosystems.
• Above all, a teammate that can handle ambitious situations, a rapidly maturing security culture, and an eagerness to mentor less expert engineers