Remote Application Security Engineer (AppSec)

Description:

• The Application Security Engineer (AppSec) position at Parity involves working within the Security team to reduce the impact of threats to Parity and its products, enhancing their resilience against potential cyber threats.
• The role requires securing various products such as blockchain clients, mobile apps, browser-based tools, crypto and networking libraries, and a blockchain framework used by third-party teams.
• The AppSec team plays a crucial role in recognizing and reducing risks to the ecosystem and influencing a wide group of stakeholders.
• The position offers a unique opportunity to work in an innovative organization where feedback is direct and honest, emphasizing that a check box approach does not yield results.

Requirements:

• Strong knowledge of secure coding practices is essential for the role.
• Demonstrated ability to apply a risk-based approach and pragmatism to enhance security levels in collaboration with different stakeholders.
• Familiarity with security frameworks and approaches such as SAST, DAST, fuzzing, property-based testing, symbolic execution, and network simulation.
• Experience in threat modeling, red/blue teaming, working with independent security teams, and implementing their findings into deployed fixes in the codebase.
• Proficiency in analyzing and mitigating cybersecurity threats.
• Understanding of web3 application architecture, including cryptography, decentralized networking, blockchain consensus, and hardware key management solutions.
• Proficiency in security tools and technologies, with the ability to create custom tools when necessary.
• Advanced skills in multiple programming languages, ideally RUST and Typescript.
• Focus on outcomes and delivering against outcomes with limited interference day to day.
• Ideally living within 2 hours of UTC+0, but exceptional candidates outside of this timezone will also be considered.

Benefits:

• Competitive remuneration packages based on market research, including tokens where legally possible.
• Remote-first and self-initiating "Future of work" environment with flexible hours.
• Opportunity to work with team members genuinely excited about their impact and projects.
• Access to the brightest minds in the Web3 space for learning and skill development.
• Inclusion in the wider ecosystem for career and networking opportunities.
• Team and company-wide retreats.
• Provided work laptop.
• Additional benefits for employees in Germany, Portugal, and the U.K. include health care, parental leave, PTO (28 days per year), local team events, yearly L&D budget, and language classes.