Security Protocol Engineer
Skills
About the Role
You will own security for protocol-layer components including L2, bridges and custody systems. You will act as the final gatekeeper before code hits main, lead threat modeling, design reviews and mitigation planning, write critical patches and drive hardening, and maintain security CI tooling (sig-verification, SAST, fuzzing, secrets scanning). You will review all protocol-relevant pull requests, run secure coding workshops and pair-program during critical sprints, interface with auditors and bounty researchers to scope, triage and fix issues, and block merges or deploys on security grounds when necessary, using direct commit access for emergency fixes.
Requirements
- 5+ years in security engineering with hands-on software experience
- Strong background in Rust, Go, or Solidity
- Deep knowledge of threat modeling and real-world exploit paths
- Experience owning or maintaining CI-based security automation
- Comfortable leading security without direct organizational ownership
- Protocol-level blockchain experience (bonus)
- Audit, bounty, or custody systems experience (bonus)
Responsibilities
- Own security across protocol-layer components (L2, bridge, custody)
- Act as the final gatekeeper before code hits main
- Lead threat modeling, design reviews, and mitigation planning
- Write critical patches and drive hardening when bandwidth is limited
- Maintain security CI tooling including sig-verification, SAST, fuzzing, and secrets scanning
- Review 100% of protocol-relevant PRs and enforce automated checks
- Run secure coding workshops and pair-program during critical sprints
- Interface with auditors and bounty researchers to scope, triage, and fix issues
- Block merges or deploys on security grounds
- Use direct commit access for emergency fixes
Benefits
- Fully remote work
- Flexible working hours across time zones