Senior Security Engineer

About the CompanyFounded in 2018 by professors of Yale University and Columbia University, CertiK is a pioneer in blockchain security, utilizing best-in-class AI technology to secure and monitor blockchain protocols and smart contracts. CertiK’s mission is to secure the cyber world. Starting with blockchain, CertiK applies cutting-edge innovations from academia into enterprise, enabling mission-critical applications to be built with security and correctness.
About YouYou’re a self-starter. You believe in tackling the most important problems, even if they are the most difficult problems. You’re comfortable with the unknown and understand that startup life means that you’re going to be wearing multiple hats. And that’s what motivates you. You’re accountable and obsessed with improvement, both in yourself and in others. You’re up to the challenge of building a world-class company that aims to be the infrastructure for more secure software for all.

Job Duties

• Safeguard company's computer networks/systems, design/implement security solutions to monitor security threats, protect sensitive data from infiltration and defend systems from cyber-attacks.
• Establish/enforce security policies, manage security vulnerabilities and responses to incidents; monitor security breaches and provide technical consulting services in cybersecurity.
• Conduct penetration tests on web/mobile (Android and iOS) & thick client application, and perform external/internal network security assessment.
• Review source code/security design, conduct threat modeling, and provide direct guidance to software development teams.
• Work directly with external Blockchain developers to audit code and secure products, including DeFi projects, crypto wallets, and exchanges.
• Use Static & Dynamic analyses to discover flaws or vulnerabilities in smart contracts and propose recommendations to address them.
• Conduct security research and publish findings in technical blog posts and/or present in security conferences.
• Assist with scoping prospective/leading engagements from kickoff through remediation and develop comprehensive result reports for technical & non-technical audiences.

Qualifications

• MS in Security Informatics/Cybersecurity or equivalent
• Minimum 6-month experience with application (web/mobile) security/hardware & embedded system security/cryptography implementation security review/penetration tests.
• Sound knowledge of solidity/smart contract/Blockchain technology
• Expert technical skills in software development, binary reverse engineering, threat modeling & security review for programs written in Java/JavaScript/Python/C/C++/PHP/Go.
• Familiar with cloud platforms such as AWS/Azure/GCP and proficient in Python/JavaScript.

Why us?CertiK is one of the fastest growing and most trusted companies in blockchain security and has become a true market leader. To date, we have collectively worked with over 3200 enterprise clients, helped secure over $310 billion worth of digital assets, and detected over 31,000 vulnerabilities in blockchain code. Our clients include leading projects such as Aave, Polygon, Binance Smart Chain, Terra, Yearn, and Chiliz. Our Q1 2021 revenues have more than quadrupled the revenue of the full 2020 year. Since Q1 2020, our team size has more than doubled, and this rate of growth will continue in 2021, creating a highly effective, remote-friendly culture with talents located worldwide. CertiK just raised over $230 million in Series B, B+, B2 and B3 funding rounds over four months in 2021, putting the company over  $2 Billion in valuation. Our investors include top VCs like Insight Partners, Sequoia, Tiger Global, Advent International, Goldman Sachs, Coatue Management, Shunwei Capital and Hillhouse Capital as well as industry leaders like Coinbase Ventures and Binance.
CertiK is proud to offer medical, vision, and dental insurance, 401(k) plan with company matching, life and accidental death and dismemberment insurance, HSA (with high deductible plan), FSA, and other benefits to all full-time employees, along with flexible paid time off and holidays. 
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.
CertiK is proud to be an equal opportunity employer. We will not discriminate against any applicant or employee on the basis of age, race, color, creed, religion, sex, sexual orientation, gender, gender identity or expression, medical condition, national origin, ancestry, citizenship, marital status or civil partnership/union status, physical or mental disability, pregnancy, childbirth, genetic information, military and veteran status, or any other basis prohibited by applicable federal, state or local law.
CertiK will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements.https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf
All CertiK employees are expected to actively support diversity on their teams, and in the Company.