Ethena is hiring a Remote Senior Staff Security Engineer
Who We Are:Ethena Labs is building the first crypto-based reward-accruing synthetic dollar protocol. Arthur Hayes is a founding advisor and the team has deep experience across traditional finance and crypto engineering from firms such as Cerberus, Wintermute, Flow Traders, Deribit, Paradigm, Aave, Blockdaemon and Kaiko. We are backed by every major exchange and trading entities in the space.\nWhat we are Doing:We are building derivative infrastructure to enable Ethereum to transform into the Internet Bond via delta-neutral derivatives positions, to create the first crypto-native, rewards bearing savings asset: sUSDe.\nWe believe creating a synthetic dollar which is not reliant on existing banking infrastructure is the single most important problem to solve and largest opportunity in crypto today.\nUSDe will form the first part of a broader ecosystem of products we are building including fixed and floating rate internet bonds and composable repo leveraged markets.\nJoin us!!\n\nWe are looking for a Senior/Staff Security Engineer to join us on this exciting journey, ensuring the security and resilience of our platform as we continue to grow.\n\nThe RoleAs a Senior/Staff Security Engineer, you will be at the forefront of securing the next generation of decentralized financial technology. You will take ownership of building and maintaining our platform's security infrastructure, working across both on-chain and off-chain components. Your work will protect our users and ensure the integrity of our systems in the rapidly evolving crypto and DeFi landscape.\nThis is an opportunity to make a meaningful impact by contributing to a key part of our platform. You will be involved in every layer of security, from threat modeling and incident response to developing automation tools that streamline our operations. Youโll work closely with our development, DevOps, and product teams, embedding security into the DNA of our products while staying ahead of emerging threats.\n\nWhat Youโll Do\n\n\n\n* Design, develop, and implement security architectures and features for both on-chain and off-chain components of the platform, ensuring defense against vulnerabilities and attacks.\n\n* Identify and mitigate risks by performing threat modeling, security hardening, and vulnerability assessments across the full tech stack.\n\n* Lead incident response efforts, acting as the primary point of contact for security incidents and coordinating with internal and external teams to resolve issues.\n\n* Conduct regular penetration testing and forensic investigations, ensuring identified security weaknesses are addressed swiftly.\n\n* Develop security tools and automation scripts to enhance the efficiency and effectiveness of our security operations.\n\n* Work closely with development and DevOps teams to integrate security best practices into every stage of the software development lifecycle.\n\n* Stay on top of emerging security trends, threats, and technologies, contributing innovative solutions to continuously improve our security posture.\n\n\n\nWhat Weโre Looking For\n\n\n\n* 7+ years of hands-on experience in a security engineering or DevSecOps role, with demonstrated expertise in full-stack software security (back-end, front-end, and DevOps).\n\n* Proficiency in designing and implementing robust security architectures for cloud-based systems, and strong experience in securing CI/CD pipelines.\n\n* Experience in incident detection, forensic investigations, and leading security incident response.\n\n* Strong understanding of security frameworks, principles, and best practices, with a proactive approach to risk management.\n\n* Ability to effectively communicate security requirements and concepts to both technical and non-technical stakeholders.\n\n* Experience with crypto/web3 technologies, including smart contract audits, is highly desirable.\n\n* Bachelorโs or Masterโs degree in Computer Science, Information Security, or a related field.\n\n* Industry certifications such as CISSP, OSCP, Sec+, or similar are a plus.\n\n\nWhy Ethena Labs?\nJoin a forward-thinking, crypto-native company with a mission to revolutionize decentralized finance.Work alongside a passionate and innovative team that values collaboration and creativity.Enjoy a flexible, remote-friendly work environment with opportunities for growth and learning.\nIf you subscribe to the mission of separating the dollar from the state, then we want to hear from you!\nWe look forward to receiving your application and will be in touch after having a chance to review. \nIn the meantime, here are some links to more information about Ethena Labs to help you check us out:WebsiteTwitterLinkedIn \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to Crypto, DevOps, Finance, Senior and Engineer jobs that are similar:\n\n
$60,000 — $100,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐ We hire old (and young)\n\n
\n\n#Location\nGlobally Remote
๐ Please reference you found the job on Remote OK, this helps us get more companies to post here, thanks!
When applying for jobs, you should NEVER have to pay to apply. You should also NEVER have to pay to buy equipment which they then pay you back for later. Also never pay for trainings you have to do. Those are scams! NEVER PAY FOR ANYTHING! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. A good idea is to check the domain name for the site/email and see if it's the actual company's main domain name. Scams in remote work are rampant, be careful! Read more to avoid scams. When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.