Security Engineer (Penetration Testing)
US / Remote
Why Us?CertiK is a pioneer in blockchain security, leveraging best-in-class AI technology to protect and monitor blockchain protocols and smart contracts. Founded in 2018 by professors from Yale University and Columbia University, CertiK’s mission is to secure the web3 world. CertiK applies cutting-edge innovations from academia to enterprise, enabling mission-critical applications to scale with safety and correctness.
About the RoleThe primary responsibility of this role is for CertiK’s security-related services. Intersecting cybersecurity and blockchain, CertiK’s security offerings include security consulting, security reviews, security auditing of smart contracts and blockchains, verification of smart contracts, penetration testing, and more. We are looking to hire someone with a passion for application security and penetration testing. This is a fun and challenging full-time position. If you are excited about hacking, threat modeling, scanning, auditing, designing, and enhancing the security of applications across the board then you will thrive in this role. While you work with clients, we will also provide you with plenty of opportunities to get involved with research and development efforts to help us raise the standards of blockchain security.
Investors = Insight Partners, Sequoia, Tiger Global, Coatue Management, Lightspeed, Advent International, SoftBank, Hillhouse Capital, Goldman Sachs, Coinbase Ventures, Binance, Shunwei Capital, IDG Capital, Wing, Legend Star, Danhua Capital and other investors.
CompensationTarget annual salary for this role performed in the US is $100,000 - $140,000. The exact compensation at which this job is filled will be determined by the skills and experience of qualified candidates.
#LI-Remote#blockchain#startups#hiring
CertiK accepts applications for this position on an ongoing basis. CertiK is proud to offer medical, vision, and dental insurance, 401(k) plan with company matching, life and accidental death and dismemberment insurance, HSA (with high deductible plan), FSA, and other benefits to all full-time employees, along with flexible paid time off and holidays. CertiK also offers a variable commission program for business development sales roles. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire. CertiK is proud to be an equal opportunity employer. We will not discriminate against any applicant or employee on the basis of age, race, color, creed, religion, sex, sexual orientation, gender, gender identity or expression, medical condition, national origin, ancestry, citizenship, marital status or civil partnership/union status, physical or mental disability, pregnancy, childbirth, genetic information, military and veteran status, or any other basis prohibited by applicable federal, state or local law. CertiK will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements.https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf All CertiK employees are expected to actively support diversity on their teams, and in the Company. Apply
About the RoleThe primary responsibility of this role is for CertiK’s security-related services. Intersecting cybersecurity and blockchain, CertiK’s security offerings include security consulting, security reviews, security auditing of smart contracts and blockchains, verification of smart contracts, penetration testing, and more. We are looking to hire someone with a passion for application security and penetration testing. This is a fun and challenging full-time position. If you are excited about hacking, threat modeling, scanning, auditing, designing, and enhancing the security of applications across the board then you will thrive in this role. While you work with clients, we will also provide you with plenty of opportunities to get involved with research and development efforts to help us raise the standards of blockchain security.
Responsibilities
- Perform security assessments on web, mobile, thick client applications, and browser extensions
- Conduct external and internal network penetration tests
- Perform security source code reviews
- Perform cloud security reviews
- Develop comprehensive pentest reports for both technical and non-technical audiences
- Research and develop innovative techniques, tools, and methodologies for pentesting applications in the blockchain space
- Contribute to the community by developing tools, presentations, and blog posts
Requirements
- Passionate about cryptocurrency, DeFi, and blockchain, with a willingness to learn Web3 technologies such as smart contracts
- Minimum of 4 years of experience in application security and penetration testing
- Experienced in source code review for different languages, with a strong understanding of JavaScript and TypeScript
- Experienced in mobile application penetration testing
- Familiar with cloud platforms and their security risks, such as AWS, Azure, and GCP
- Experience in programming with scripting languages such as Python and Bash
- Solid understanding of cryptography
- BS/MS/PhD in Computer Science or Information Security
- Strong spoken and written communication skills
Bonus Points
- Experienced in pentesting Web3 applications such as crypto exchanges, wallets, Dapps, and key custodian solutions
- Experienced in smart contract security audits
- Familiar with browser extension architecture and security risks
- Actively participate in the blockchain security community
- OSCP, OSWE, OSCE, GWAPT, or comparable certification
- Participated in bug bounty programs and audit contests
- Published security-related blog posts and spoken at security conferences and/or local meetups
Investors = Insight Partners, Sequoia, Tiger Global, Coatue Management, Lightspeed, Advent International, SoftBank, Hillhouse Capital, Goldman Sachs, Coinbase Ventures, Binance, Shunwei Capital, IDG Capital, Wing, Legend Star, Danhua Capital and other investors.
CompensationTarget annual salary for this role performed in the US is $100,000 - $140,000. The exact compensation at which this job is filled will be determined by the skills and experience of qualified candidates.
#LI-Remote#blockchain#startups#hiring
CertiK accepts applications for this position on an ongoing basis. CertiK is proud to offer medical, vision, and dental insurance, 401(k) plan with company matching, life and accidental death and dismemberment insurance, HSA (with high deductible plan), FSA, and other benefits to all full-time employees, along with flexible paid time off and holidays. CertiK also offers a variable commission program for business development sales roles. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire. CertiK is proud to be an equal opportunity employer. We will not discriminate against any applicant or employee on the basis of age, race, color, creed, religion, sex, sexual orientation, gender, gender identity or expression, medical condition, national origin, ancestry, citizenship, marital status or civil partnership/union status, physical or mental disability, pregnancy, childbirth, genetic information, military and veteran status, or any other basis prohibited by applicable federal, state or local law. CertiK will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements.https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf All CertiK employees are expected to actively support diversity on their teams, and in the Company. Apply
Job Profile
Regions
Countries
401k plan with company matching Dental Insurance Flexible paid time off Holidays Medical, vision, and dental insurance Variable commission program
Tasks- Conduct penetration tests
- Develop pentest reports
- Perform security assessments
- Perform source code reviews
- Research
- Research and develop pentesting techniques
- Technology
AI Technology Application Security AWS Azure Bash Blockchain Security Browser extension security Business Development Cloud Security Compliance Cryptography DeFi GCP Javascript Mobile application security Penetration Testing Pentesting tools Python Smart Contracts Source Code Review Typescript Web3 Web3 technologies
Experience4 years
Education Certifications TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9
Remote Jobs in North America
Remote Jobs in Europe
Remote Jobs in Asia/Pacific
Remote Jobs in South America
Remote Jobs in Africa
Remote Jobs in Middle East
Full Time Remote Jobs
Part Time Remote Jobs
Contract Remote Jobs
Internship Remote Jobs
Temporary Remote Jobs
Freelance Remote Jobs
Mid-Level Remote Jobs
Senior-Level Remote Jobs
Entry-Level Remote Jobs
Exec-Level Remote Jobs
Lead-Level Remote Jobs
Remote Scientist Jobs
Remote Senior Software Engineer Jobs
Remote Business Development Jobs
Remote Analytics Jobs
Remote Sales Manager Jobs
Remote Spanish Jobs
Remote Pathologist Jobs
Remote Customer Service Jobs
Remote Speech Language Pathologist Jobs
Remote Contract Jobs
Remote Advisor Jobs
Remote Technician Jobs
Remote Event Jobs
Remote Quality Jobs
Remote Professional Jobs
Remote Program Manager Jobs
Remote Engineer I Jobs
Remote Sales Rep Jobs
Remote Associate Director Jobs
Remote Associate Dir Jobs
Remote Jobs with GBP > 120K in Salary
Remote Jobs with EUR > 100K in Salary
Remote Jobs with CAD > 140K in Salary
Remote Jobs with CAD > 160K in Salary
Remote Jobs with GBP > 140K in Salary
Remote Jobs with EUR > 120K in Salary
Remote Jobs with PLN > 40K in Salary
Remote Jobs with CAD > 180K in Salary
Remote Jobs with PLN > 60K in Salary
Remote Jobs with PLN > 80K in Salary
Remote Jobs with PLN > 100K in Salary
Remote Jobs with PLN > 220K in Salary
Remote Jobs with PLN > 120K in Salary
Remote Jobs with PLN > 140K in Salary
Remote Jobs with PLN > 160K in Salary
Remote Jobs with PLN > 180K in Salary
Remote Jobs with PLN > 200K in Salary
Remote Jobs with GBP > 160K in Salary
Remote Jobs with CAD > 200K in Salary
Remote Jobs with PLN > 260K in Salary