Sr. Security Engineer (Penetration Testing) - CertiK
View Company Profile- Job Title
- Sr. Security Engineer (Penetration Testing)
- Job Location
- US / Remote
- Job Description
- Why Us?CertiK is a pioneer in blockchain security, leveraging best-in-class AI technology to protect and monitor blockchain protocols and smart contracts. Founded in 2018 by professors from Yale University and Columbia University, CertiK’s mission is to secure the web3 world. CertiK applies cutting-edge innovations from academia to enterprise, enabling mission-critical applications to scale with safety and correctness.About the RoleThe primary responsibility of this role is for CertiK’s security-related services. Intersecting cybersecurity and blockchain, CertiK’s security offerings include security consulting, security reviews, security auditing of smart contracts and blockchains, verification of smart contracts, penetration testing, and more. We are looking to hire someone with a passion for application security and penetration testing. This is a fun and challenging full-time position. If you are excited about hacking, threat modeling, scanning, auditing, designing, and enhancing the security of applications across the board then you will thrive in this role. While you work with clients, we will also provide you with plenty of opportunities to get involved with research and development efforts to help us raise the standards of blockchain security.Responsibilities
- Perform security assessments on web, mobile, thick client applications, and browser extensions
- Conduct external and internal network penetration tests
- Perform security source code reviews
- Perform cloud security reviews
- Develop comprehensive pentest reports for both technical and non-technical audiences
- Research and develop innovative techniques, tools, and methodologies for pentesting applications in the blockchain space
- Contribute to the community by developing tools, presentations, and blog posts
Requirements- Passionate about cryptocurrency, DeFi, and blockchain, with a willingness to learn Web3 technologies such as smart contracts
- Minimum of 4 years of experience in application security and penetration testing
- Experienced in source code review for different languages, with a strong understanding of JavaScript and TypeScript
- Experienced in mobile application penetration testing
- Familiar with cloud platforms and their security risks, such as AWS, Azure, and GCP
- Experience in programming with scripting languages such as Python and Bash
- Solid understanding of cryptography
- BS/MS/PhD in Computer Science or Information Security
- Strong spoken and written communication skills
Bonus Points- Experienced in pentesting Web3 applications such as crypto exchanges, wallets, Dapps, and key custodian solutions
- Experienced in smart contract security audits
- Familiar with browser extension architecture and security risks
- Actively participate in the blockchain security community
- OSCP, OSWE, OSCE, GWAPT, or comparable certification
- Participated in bug bounty programs and audit contests
- Published security-related blog posts and spoken at security conferences and/or local meetups
Everything You Need, One Platform.
From job listings to startups, investors to funding rounds, and everything in between, Employbl puts the power in your hands. Why wait?
Start your free trial today!Stay Ahead of the Curve
Sign up for our newsletter to stay informed about the latest startups and trends in the tech market. Let Employbl be your guide to success.
CertiK Company Size
Between 100 - 500 employees
CertiK Founded Year
2017
CertiK Total Amount Raised
$300,200,000
CertiK Funding Rounds
View funding detailsSeries B
$60,000,000 USD
Series B
$88,000,000 USD
Series B
$80,000,000 USD
Series B
$24,000,000 USD
Series B
$37,000,000 USD
Series A
$7,700,000 USD
Seed
$3,500,000 USD