The Security Engineer will protect the OP Stack by proactively identifying vulnerabilities and threats through rigorous security assessments, threat modeling, design reviews, and code reviews.
This role involves collaborating closely with engineers across the stack to embed security best practices into every phase of development, from initial design through deployment and operations.
The Security Engineer will build and maintain effective security tools, processes, and procedures to improve the security posture and help safely and swiftly ship code.
Responsibilities include owning the multisig security policy and contributing to detection and response efforts by developing monitoring strategies, runbooks, and leading incident response drills.
The company fosters an engineering culture that takes security seriously, providing support for the Security Engineer to perform at their best.
Requirements:
Expertise in identifying, understanding, and mitigating security vulnerabilities through threat modeling, security assessments, security reviews, audits, and red teaming is required.
Experience in building and operating detection and response capabilities, including monitoring, alerting, and incident handling is necessary.
Familiarity with best practices for operational security of multisigs, including signer management, access controls, and secure workflows is essential.
The candidate should have experience shipping safety-critical code in a fast-paced environment.
High agency is required, with the ability to identify gaps, determine security priorities, and proactively drive initiatives to address them across the organization.
Exceptional analytical, problem-solving, and communication skills are necessary, with the ability to clearly articulate security risks and solutions.
Benefits:
The company offers competitive compensation, fully paid medical, dental, and vision insurance, and a 4% 401K match.
Employees are supported in their accomplishments and encouraged to do the best work of their careers.
The team is diverse, with members from varied backgrounds, which is considered a great strength.
The work environment is fully remote, with a team that is deeply engaged, highly skilled, and values fun.
The company has a long-term vision, with founders who have been scaling Ethereum since 2015.
