Aptos LabsRemote
Information Security Engineer, Product
United States
Full Time
3 hours ago
H1B Sponsor Likely
Key skills
Vulnerability researchAutomated security analysisNative development practicesSmart contract programmingSecurity toolsframeworksContributions to security communityvirtual machinesCRustBlockchain
About this role
Aptos Labs is a people-first blockchain company on a mission to provide universal access to decentralized assets. They are seeking a Product Security Engineer to secure their core technologies and safeguard their infrastructure by identifying and mitigating threats.
Responsibilities:
- Analyze and assess novel and recurring security issues via design reviews, code audits, and penetration tests
- Design and build security tools, and develop mitigations, frameworks, and hardening strategies tailored for vulnerability prevention and detection
- Review and develop secure operational practices, and provide security guidance for engineers
- Respond to and triage reports from bug bounty programs
Requirements:
- B.S. or M.S. in Computer Science, a related technical field, or equivalent experience
- 3+ years of experience in vulnerability research and exploitation
- Experience with native development practices and common vulnerability patterns (e.g., Rust, C, etc.)
- Experience with automated security analysis tooling and frameworks (fuzzing, static analysis, etc.)
- Contributions to the security community (public research, blogging, talks in relevant conferences, etc.)
- Experience with virtual machines or complex runtime environments, such as MoveVM (extra bonus), EVM, WASM, or LLVM-based runtimes, including their security models, sandboxing, and execution isolation
- Familiarity with smart contract programming languages (extra bonus for Move), security tools, and frameworks, including formal verification