Web3 Security Engineer
Skills
About the Role
You will be embedded with engineering to drive security best practices for smart contracts and blockchain products. You will perform threat modeling, run automated and manual security scans, audit Solidity code, and work with engineers to remediate vulnerabilities. You will ensure smart contracts emit monitoring events, maintain incident response runbooks, participate in incident handling, evaluate new security tooling, and leverage AI to automate and improve security workflows.
Requirements
- Bachelor or master degree in computer science or related field
- 2+ years in software engineering
- Experience auditing smart contracts
- Strong knowledge of Solidity
- Hands-on expertise with blockchain and smart contract security
- Able to audit Solidity code
- Familiarity with blockchain monitoring solutions
- Strong communication in English
- Strong analytical and problem-solving skills
- Python scripting (nice to have)
- Experience using LLMs (nice to have)
Responsibilities
- Perform internal and external security assessments of products
- Conduct threat modeling, tabletop exercises, and code reviews
- Hunt for security vulnerabilities in smart contracts and systems
- Ensure smart contracts emit sufficient events for monitoring
- Continuously monitor smart contracts using blockchain monitoring platforms
- Maintain and update incident response runbook and participate in incident response
- Identify and evaluate new security technologies and tooling
- Drive improvements to the security posture by identifying and remediating gaps
- Collaborate with engineering to identify security gaps in smart contract architecture
- Leverage AI to enhance and automate security workflows