Agoric is hiring a
Remote Security Engineer
\nAgoric is an open-source software development company bringing better security and composability to the decentralized financial infrastructure of today. Agoric is built on a JavaScript library of reusable, composable components coded by experienced community members. Our secure JavaScript smart contract platform allows developers to rapidly build secure applications on top of an ever-growing collection of reusable governance, lending, and trading components. \nAbout this role\n\nAs a Security Engineer at Agoric, you will be an integral part of ensuring our smart contracts platform is secure from attack and disruption across multiple facets, including code vulnerabilities, chain attacks, configuration and release management, dependency and supply chain risks, scalability, denial of service, decentralized hosting of our software and the risks that come with it. You will guide the company to identify and resolve potential security risks, as well as putting in place systems and procedures for handling security issues when they occur. You will build upon our companyโs strong security culture, enabling Agoric and its community to build a rich ecosystem of secure smart contracts. You will work with a team of world-class computer security and programming language developers, cryptographers, economists, business leaders and community builders; all of whom have the mission of making decentralized smart contracts an everyday reality. \n\nWhat you will be doing\n\n\n* Develop our static analysis and fuzzing programs, with opportunities to build custom tooling to support bug hunting and QA. \n\n* Guide penetration testing program for application security, including supporting security audits. \n\n* Perform adversarial testing on frameworks, contracts, core infrastructure, and testnets.\n\n* Support our vulnerability disclosure and bug bounty program. \n\n* Guide our dependency management program, and maintenance of Agoricโs Software Bill of Materials.\n\n* Improve, develop, and maintain security documentation including threat models and user interaction diagrams of the Agoric stack.\n\n* Support ecosystem security by partnering with various ecosystem stakeholders (e.g. wallets, Dapp developers, inter-chain providers) for audit readiness, emergency coordination, and observability efforts. \n\n* Aid the team in incorporating security into our software designs and implementations as a first class goal.\n\n* Participate in team code reviews and threat modeling with fellow engineers, with a keen eye towards information security concerns \n\n* Help improve the stability, scalability, reliability, and maintainability of the Agoric platform through the construction of tools and testing frameworks, integration of open source software, and helping to develop response playbooks and best practices.\n\n* Understand the security trends and challenges within the company and in the blockchain / DeFi industries at large. Offer ideas and collaborative solutions to others at Agoric and in the ecosystem.\n\n* Participate in open source development on shared resources with external development teams\n\n\n\n\nWhat we look for in you\n\n\n* BA, BS, MS, PhD in Computer Science, Software Engineering, or other relevant discipline, or equivalent professional experience\n\n* 6+ years of experience as a security engineer in challenging environments (high profile / high stakes companies)\n\n* Familiarity with blockchain, cryptography, and smart contract languages and frameworks\n\n* Experience working with systems design and open-source projects\n\n\n\n\nNice to haves\n\n\n* Have previous experience at a fast paced, high growth stage internet/software company\n\n* Experience with Javascript & Go.\n\n* Experience with Cosmos/Tendermint\n\n\n\n\nAgoric is committed to diversity in its workforce and is proud to be an equal opportunity employer. Agoric does not make hiring or employment decisions on the basis of race, color, religion, creed, gender, national origin, age, disability, veteran status, marital status, pregnancy, sex, gender expression or identity, sexual orientation, citizenship, or any other basis protected by applicable local, state or federal law.\n\nAgoric Privacy Policy\n\n \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to Design, Defi, JavaScript and Engineer jobs that are similar:\n\n
$60,000 — $100,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐
We hire old (and young)\n\n
\n\n#Location\nWorldwide