Senior Security Engineer

New York, USA
Full time
Office
Compensation is not specified
Role
Security Engineer
Description

About the Company

CertiK is a reputable Web3 security company founded in New York City in 2017. The company specializes in securing blockchain protocols, smart contracts, and decentralized applications through advanced security research, formal verification, and AI-powered technology. CertiK offers comprehensive security solutions, including smart contract audits, penetration testing, on-chain monitoring, incident response, and compliance services for prominent digital asset projects.

CertiK has a global presence, serving numerous enterprise clients and Web3 projects worldwide. The company has a diverse international team across North America, Asia, and Europe and is supported by renowned investors like Coatue, Goldman Sachs, Insight Partners, and Sequoia Capital. CertiK's contributions to blockchain security innovation have been acknowledged by prestigious organizations such as the World Economic Forum and CB Insights.

About the Role

The primary focus of this role is to oversee CertiK's security services, which involve cybersecurity and blockchain integration. Responsibilities include security consulting, audits of smart contracts and blockchains, security reviews, formal verification of smart contracts, penetration testing, and more. We seek a candidate with a strong interest in application security and penetration testing. This is a dynamic full-time position suited for individuals passionate about enhancing application security across various domains. Apart from client engagements, there will be ample opportunities to contribute to research and development initiatives aimed at elevating blockchain security standards.

Responsibilities

  • Collaborate with external blockchain developers to conduct security audits and ensure the security of products like smart contracts, protocols, and applications.
  • Define and enforce security policies, manage vulnerabilities, address security incidents and exploits, and generate comprehensive analysis reports.
  • Monitor security breaches, shield systems against cyberattacks, and offer expert technical advice on cybersecurity.
  • Perform penetration testing on web and mobile applications (Android and iOS), as well as conduct internal and external network security assessments.
  • Review source code and security design, perform threat modeling, and provide guidance to software development teams.
  • Contribute to the enhancement of internal security tools and devise new tools that adhere to best engineering practices to bolster security services.
  • Utilize static and dynamic analyses to identify vulnerabilities in smart contracts, propose appropriate solutions, assess sandbox, VM, network, and distributed-system code for weaknesses, and develop PoC exploits.
  • Engage in security research, publish findings through technical blogs, and present at various conferences and tech events to showcase technical expertise and insights.

Requirements

  • Hold a Master’s degree in Security Informatics, Cybersecurity, or a related field.
  • Possess in-depth knowledge of solidity, smart contract security, cryptography, and blockchain technology.
  • Demonstrate technical proficiency in Web3 security, threat and vulnerability management, penetration testing, and security reviews for programs written in languages like Java, JavaScript, Python, C/C++, PHP, and Go.
  • Have familiarity with cloud platforms such as AWS, Azure, and GCP, and proficiency in Python and JavaScript.

The expected annual salary range for this role is $130,000 to $163,000, depending on the qualifications and experience of candidates. CertiK offers a comprehensive benefits package to full-time employees, including medical, vision, and dental insurance, a 401(k) plan with company matching, life and accidental death and dismemberment insurance, HSA, FSA, flexible paid time off, holidays, and a variable commission program for business development roles.

CertiK is an equal opportunity employer, committed to supporting diversity in the workplace and complying with all federal laws regarding employment eligibility. Qualified applicants with criminal histories will be considered in accordance with local and federal regulations.

In the recruitment process, CertiK may utilize artificial intelligence tools to aid in application reviews, resume analysis, and evaluation of responses, though final hiring decisions are made by humans. For more information on data processing, kindly reach out to us.

Skills Required
Avatar
CertiK
Company size
Not specified
Location
United States
Description
Not specified

More Full-time Jobs

Show more

Chief Technology Officer (CTO) / Senior Full-Stack Developer (Web3)

London, UK
London, UK
Full time
Remote
About the Role
We are building a next-generation Web3 social platform designed to redefine how digital communities connect, collaborate, and grow.
Backed by years of experience within the cryptocurrency, blockchain, and digital asset ecosystem, our team has developed deep insights into how founders, developers, investors, creators, and communities interact. This understanding inspired us to create a platform that goes beyond financial applications and focuses on empowering meaningful social engagement.
Our mission is to build a transparent, community-driven social network where users can share ideas, collaborate on projects, discover opportunities, and create lasting relationships. We believe the next evolution of social media will be powered by decentralized technologies while maintaining an exceptional user experience, simplicity, and long-term sustainability.
We are seeking an experienced Chief Technology Officer (CTO) or Senior Full-Stack Developer who is passionate about Web3 and capable of leading the technical vision, architecture, and execution of our platform from the ground up.
Responsibilities
Lead the technical strategy and product architecture.
Design and build scalable backend systems and modern frontend applications.
Develop high-performance APIs and real-time features.
Integrate blockchain technologies, wallets, and Web3 authentication where appropriate.
Build secure, reliable, and maintainable infrastructure.
Collaborate closely with product, design, and leadership teams.
Establish engineering best practices, code quality standards, and development workflows.
Mentor engineers and help grow the technical organization.
Evaluate emerging technologies and implement solutions that improve scalability, security, and user experience.
Requirements
5+ years of professional software development experience.
Strong experience with modern JavaScript/TypeScript ecosystems.
Experience with React, Next.js, Node.js, or similar technologies.
Solid understanding of system architecture, cloud infrastructure, databases, and API design.
Experience building scalable consumer-facing products.
Familiarity with blockchain technologies, Web3 infrastructure, wallets, smart contracts, or decentralized applications.
Strong knowledge of security best practices and application performance optimization.
Excellent problem-solving and communication skills.
Ability to work independently in a fast-paced startup environment.
Preferred Qualifications
Experience building Web3 or crypto products.
Understanding of decentralized identity, token ecosystems, or on-chain social applications.
Experience leading engineering teams or serving in a technical leadership role.
Background in DevOps, CI/CD, Docker, Kubernetes, or cloud platforms such as AWS or GCP.
Experience with real-time messaging, social platforms, or community products.
What We Offer
Competitive full-time compensation.
Opportunity to build a product from an early stage with significant technical ownership.
Flexible and remote-friendly work environment.
Collaborative team focused on innovation and long-term impact.
Work on cutting-edge Web3 technologies and help shape the future of digital communities.
Opportunity for career growth and leadership as the platform scales.
If you are excited about building the next generation of Web3 social experiences and want to make a meaningful impact from the earliest stages, we'd love to hear from you.
Payment in Crypto
7,500-11,000
Monthly
See details

Senior Blockchain Engineer (Cosmos SDK & IBC)

Hong Kong
Hong Kong
Full time
Remote
Merklio is expanding its cross-chain orchestration layer. We are building a sovereign app-chain (Rollup-style) that aggregates liquidity from multiple L1s via IBC. We need a Blockchain Engineer to design, implement, and maintain our Cosmos-based chain.
Expectations:
Design custom modules (x/staking, x/rewards, x/merkl)
Implement IBC light clients and relayers
Optimize block time and state pruning
Write comprehensive unit & integration tests (Go test)
Build CLI tools for validators and delegators
Monitor node health and network upgrades
Collaborate with the research team on MEV-resistant ordering
Maintain chain upgrades (v1 → v2) with migration scripts
Write technical documentation for external validators
Nice to have:
Experience with Avalanche Subnets or Polkadot Substrate
Knowledge of HSM and key management
Open-source contributions to Cosmos SDK or related repos
Chinese+English language proficiency
Payment in Crypto
7,000-10,000
Monthly
See details

Smart Contract Engineer (Solidity / Rust)

Hong Kong
Hong Kong
Full time
Remote
Merklio is building a modular settlement layer for institutional staking. We are looking for a Smart Contract Engineer who will own the core vault contracts, liquid staking tokens, and reward distribution mechanisms.
Expectations:
Design and deploy upgradeable proxy contracts (UUPS)
Write high-assurance tests with invariant testing (Foundry)
Implement access control (Ownable2Step, roles)
Integrate with Chainlink Automation and CCIP
Write Natspec docs and deployment scripts
Participate in internal security reviews and bug bounties
Optimize storage layouts to reduce gas costs by >15%
Collaborate with the research team on novel staking mechanisms
Nice to have:
Experience with LayerZero or Hyperlane
Published audit reports or contest wins (Code4rena / Sherlock)
Knowledge of ZK-proofs (basic)
Chinese language proficiency
Payment in Crypto
8,500-12,000
Monthly
See details

Senior Blockchain Engineer - Low-Latency Execution Infrastructure (HyperEVM / Hyperliquid)

Full time
Remote
 
 
we’re looking for a senior blockchain engineer to build low-latency execution infrastructure around hyperevm and hyperliquid-related trading systems.
 
this is not a frontend or dapp role. the focus is on real-time execution systems, chain-native infrastructure, and market-aware backend engineering where latency, ordering, and state correctness directly impact execution outcomes.
 
you will work on systems that operate under noisy, adversarial, and highly dynamic conditions, including delayed or missing websocket events, rpc inconsistencies, transaction lifecycle complexity, state desynchronization, retries, and recovery logic.
 
core responsibilities include building and maintaining realtime blockchain data pipelines, websocket and rpc streaming systems, execution orchestration layers, liquidity-aware routing logic, transaction lifecycle management, and integration with orderbook and market data systems.
 
we are specifically looking for engineers who think in systems rather than features. meaning understanding how data flows through pipelines, how state evolves over time, how failures propagate, and how to design systems that recover automatically without manual intervention.
 
areas of work include:
 
- realtime blockchain data ingestion
- mempool-aware execution flows
- transaction lifecycle handling
- execution sequencing and routing
- websocket and rpc infrastructure
- state synchronization systems
- liquidity and orderbook integration
- performance and latency optimization
 
you should be comfortable working with distributed systems, asynchronous event processing, and latency-sensitive backend architectures.
 
strong experience in one or more of the following areas is highly relevant:
 
- exchange infrastructure
- trading systems
- execution engines
- blockchain indexers
- realtime event systems
- arbitrage systems
- rpc/node infrastructure
- defi backend systems
- low-latency backend engineering
 
preferred technical stack:
 
- typescript / node.js
- go
- rust
- python
- postgres
- clickhouse
- redis
- kafka or similar messaging systems
- docker
- linux environments
- evm rpc internals
- websocket infrastructure
 
ecosystem familiarity:
 
- ethereum, arbitrum, base, optimism, bsc
- hyperliquid / hyperevm
- foundry
- ethers.js / viem
- geth / erigon / nethermind
- dex and amm mechanics
- liquidity math, slippage, gas strategy, routing logic
 
this role is not suitable for:
 
- frontend-only developers
- nft or basic dapp experience only
- tutorial-level web3 developers
- candidates without production systems experience
 
we value engineers who have built real systems where correctness, latency, and reliability matter under load. we care less about buzzwords and more about concrete systems you have personally built and operated.
 
ideal candidates can clearly explain:
 
- system architecture decisions
- bottlenecks and tradeoffs
- failure modes and recovery strategies
- latency considerations in real systems
- production debugging experience
 
working style:
 
- remote
- async-first
- low bureaucracy
- high ownership
- engineering-driven team
- direct technical communication
 
we strongly prefer practical engineering depth over polished presentation. if you have built or worked on systems involving realtime data, trading infrastructure, blockchain execution, or latency-sensitive backend systems, please include details of those systems when applying.
 
Payment in Crypto
6,000-13,500
Monthly
See details

Senior Rust Developer

Full time
Remote
About the Role
We're looking for a Senior Rust Developer to join our core engineering team and own the systems that sit closest to the market. This means low-latency order execution engines, high-throughput market data pipelines, real-time streaming infrastructure, and integrations with both centralized and decentralized exchanges. Every millisecond and every line of code matters here, and you'll be the person making sure it all holds up under pressure. This is not a role for someone who wants to write Rust adjacent to trading. You'll be building the backbone of live production systems where correctness, safety, and raw performance have direct P&L consequences. You'll work alongside quantitative researchers and other engineers to implement and deploy strategies, and you'll have meaningful input into the infrastructure decisions that shape how we build and scale. If you've spent years pushing Rust to its limits in high-performance environments and you want that work to matter in real markets in real time, this is the role.
Responsibilities
Design, build, and maintain high-throughput, low-latency trading systems in Rust
Develop and optimize order execution engines, market data feeds, and real-time processing pipelines
Build reliable integrations with centralized and decentralized exchanges across CEX and DEX environments
Architect systems for real-time streaming data and WebSocket communication at scale
Write safe, well-tested concurrent code leveraging async runtimes including Tokio and async-std
Collaborate with quantitative researchers to implement and deploy trading strategies into production
Profile, benchmark, and eliminate performance bottlenecks across critical system paths
Contribute to infrastructure decisions around deployment, observability, and fault tolerance
Requirements
5+ years of professional software engineering experience
2+ years building and maintaining production systems in Rust, and you will be tested on it
Deep command of Rust's ownership model, lifetimes, traits, and async patterns
Experience with high-performance networking including TCP/UDP, WebSockets, and gRPC
Strong understanding of concurrency primitives and lock-free data structures
Familiarity with financial systems, trading platforms, or real-time data pipelines
Linux systems programming and performance tuning experience
Comfortable working independently in a fast-paced, remote-first environment
Nice to Have
Experience with cryptocurrency exchanges, DeFi protocols, or blockchain RPC nodes
Knowledge of FIX protocol or other financial messaging standards
Open-source Rust contributions
Experience with FPGA or kernel-bypass networking such as DPDK or io_uring
Familiarity with quantitative trading concepts including order books and market microstructure
Infrastructure experience with Docker, Kubernetes, Terraform, or Prometheus/Grafana
Payment in Crypto
5,000-10,000
Monthly
See details