Staff Security Engineer

Staff Security Engineer – Smart Contract Security

(Remote – US & Canada preferred, open to exceptional candidates globally)

We are looking for an experienced Staff-level Security Engineer to join a well-funded, protocol-focused team building core infrastructure for the next generation of decentralized systems (Ethereum ecosystem, restaking, L2s, and beyond).

This is a high-impact individual contributor role. You will own smart-contract security end-to-end, from architecture reviews and audits to tooling, incident response, and threat modeling.

What you’ll do

• Perform in-depth security audits of production Solidity/Rust smart contracts (upgradeable systems, multi-sigs, cross-chain bridges, staking/restaking logic, ZK circuits, etc.)
• Design and maintain internal fuzzing, symbolic execution, and formal-verification pipelines
• Lead threat modeling for new protocol upgrades and new product launches
• Partner closely with protocol engineers to bake security into the design phase
• Run the internal bug-bounty program and coordinate with external auditors
• Respond to incidents, conduct RCAs, and drive long-term remediation
• Stay ahead of the curve on new attack vectors (flash-loan exploits, oracle manipulation, MEV, L2 risks, account abstraction quirks, etc.)
• Mentor engineers, run security training, and represent the team externally (conferences, research, open-source)

Must-haves

• 7+ years in security, with 4+ years focused exclusively on blockchain/smart-contract auditing
• Battle-tested experience finding critical vulnerabilities in production DeFi, bridging, or L2/restaking protocols
• Mastery of Solidity (and ideally Rust or Cairo) + deep EVM internals knowledge
• Hands-on experience with Mythril, Slither, Foundry/Forge, Echidna, Manticore, Certora, Certora, or similar
• Strong cryptography background (signature schemes, ZK proofs, MPC, etc.)
• Ability to explain complex vulnerabilities to both engineers and executives
• Track record of responsible disclosure and/or public reports

Nice-to-haves

• Published research, open-source security tools, or Immunefi top-rank
• Experience securing L2s, rollups, validiums, or restaking protocols
• Formal methods background
• Previous incident response in a DeFi or infrastructure protocol

Compensation & Benefits

• Highly competitive salary + meaningful equity (top-of-band for proven talent)
• Full health, dental, vision (US/Canada) or equivalent stipend elsewhere
• Unlimited PTO (minimum 4 weeks encouraged)
• Annual learning & conference budget
• Home-office setup + wellness stipend
• Regular team off-sites