Design and implement security and defense-in-depth controls to prevent and limit vulnerabilities.
Perform cutting-edge security research in Solana and other Rust-based blockchains and smart contract platforms.
Develop security tooling and developer workflows to aid in the early detection of vulnerabilities.
Collaborate with core contributors to conduct internal security audits.
Shepherd external security audits with the help of leading third-party audit firms.
Operate bug bounty programs on Immunefi, including leading, monitoring, and triaging submissions.
Work in a diverse, decentralized team environment with Web3 professionals.
Clearly communicate security risks, findings, and proposed solutions.
Adhere to the highest standards of integrity, trust, and professionalism.

Strong desire to understand how things work, with the ability to quickly absorb new information.
Familiarity with one or more Rust-based smart contract platforms (e.g., Solana, CosmWasm, NEAR), with a strong preference for existing Solana experience.
Proven experience as a consultant, engineer, bug bounty hunter, or auditor.
Prior experience working with open-source development practices.
Willingness and aptitude to learn multiple Rust-based and C-based runtimes.
Understanding of blockchain infrastructure technologies such as bridging or oracles.
Prior experience with code reviews.
Prior experience with reverse engineering, fuzzing, and/or binary exploitation.
Prior high ranking on bug bounty leaderboards, code audit contests, or CTF competitions.

Security Engineer

Key skills