Staff Security Engineer (Blockchain)
Ondo FinanceSalary not specified
Full Time
Expert & Leadership (9+ years)
Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Blockchain, Web3, CryptocurrencyIndustries
Requirements
The candidate should possess over 5 years of experience in security engineering, offensive security, or protocol-level system audits, with strong experience in security engineering for cloud-native or blockchain-based systems. A solid understanding of offensive security, including vulnerability discovery, fuzzing, static/dynamic analysis, and hands-on experience securing distributed infrastructure like Linux, containers, Kubernetes, and cloud networks is required. Familiarity with blockchain architectures such as Cosmos SDK, Tendermint, IBC, EVM, CosmWasm, or cross-chain bridges is also necessary. Proficiency in Go or Rust, or Solidity/CosmWasm is a plus, as is comfort in writing PoCs, threat models, or simple fuzzers. The ideal candidate is self-driven, curious, motivated, and may have experience with Cosmos SDK, IBC, Injective chain tooling, or involvement in open-source security research, bug bounties, or CTFs.
Responsibilities
The Security Engineer will perform regular security reviews, penetration tests, and code audits across the blockchain ecosystem and core infrastructure, including chain modules, smart contracts, validator infrastructure, and supporting services. Responsibilities include hunting for new vulnerabilities through fuzzing, adversarial testing, and exploit development at protocol, network, and application layers. The role involves developing internal tools for detecting misconfigurations and suspicious activity, analyzing emerging threats in other blockchains, and assessing Injective's exposure. Managing vulnerability scanning pipelines, patch management, and incident response processes, as well as auditing internal systems and services for best practice alignment, are key duties. The engineer will collaborate with developers and auditors on security fixes, contribute to the bug bounty program, and help define and enforce internal security policies and tooling.
Skills
Security Engineering
Blockchain Security
Penetration Testing
Code Auditing
Smart Contracts
Validator Infrastructure
Offensive Security
Vulnerability Discovery
Fuzzing
Exploit Development
Cloud Security
Incident Response
Bug Bounty Programs
Vulnerability Scanning
Static Analysis
Dynamic Analysis
Injective Labs
Blockchain platform for DeFi; zero gas fees
About Injective Labs
Injective Labs, a pivotal player in blockchain technology, specifically caters to DeFi (Decentralized Finance) developers by offering an open, interoperable network that ensures zero gas fees, secure transactions, and quick transmission speeds. Its alignment with prominent blockchain protocols like Cosmos IBC and Ethereum enhances its competitive edge, making it a leading entity in the blockchain industry. This company offers a vibrant and technologically advanced working environment that is ideal for professionals eager to impact the financial technology landscape through cutting-edge blockchain solutions.
New York City, New YorkHeadquarters
2018Year Founded
$206.7MTotal Funding
VENTURE_UNKNOWNCompany Stage
Fintech, Crypto & Web3Industries
51-200Employees
Benefits
Health Insurance
Unlimited Paid Time Off
Flexible Work Hours
Hybrid Work Options
Risks
Competition from Binance Smart Chain and Polygon challenges Injective's market share.
Security risks in DeFi could harm Injective's reputation if not addressed.
Platform complexity from new features may deter less experienced users.
Differentiation
Injective Labs focuses on decentralized finance solutions, setting it apart from competitors.
The launch of Mito showcases innovation in automated trading and yield generation.
Helix's rapid growth highlights Injective's strength in decentralized derivatives exchanges.
Upsides
Increased interest in DeFi drives demand for Injective's innovative solutions.
Helix's $7 billion trading volume indicates strong market acceptance.
The rise of amateur traders offers a chance to expand Injective's user base.
Related Jobs
RemoteRemoteSecurity Engineer, Cloud Security
OpenAI$279,000 - $385,000/year
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteBlockchain Security Expert - Anti Defect Track
CertikSalary not specified
- Full Time
- Junior (1 to 2 years)
RemotePenetration Tester
UltraViolet CyberSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Software Engineer, KSM (SDKs & Integrations)
Keeper SecuritySalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Network Security Engineer
Flock Safety$130,000 - $170,000/year
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSoftware Engineer - Rust - Backend - Pro
Kraken$127,000 - $203,000/year
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteApplication Security Engineer - Remote
PayNearMeSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Smart Contract Engineer, Solidity
Chainlink LabsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSecurity Engineer
Chronosphere$200,000 - $250,000/year
- Full Time
- Senior (5 to 8 years)
RemoteStaff KMS Security Engineer (Security)
PhantomSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteDistributed Systems Engineer, Security
OpenAI$300,000 - $885,000/year
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteProtocol Engineer - Vice President (Chainlink)
GalaxySalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteBlockchain Security Expert - AI Track
CertikSalary not specified
- Full Time
- Mid-level (3 to 4 years)