Staff Application Security Engineer (Security)

Remote

Apply with AI Apply

Not SpecifiedCompensation

Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level

Full TimeJob Type

UnknownVisa

Cryptocurrency, Fintech, Software Development, Mobile ApplicationsIndustries

Requirements

Candidates should have 7+ years of experience in offensive security techniques, with a focus on blockchain technology and cryptography. A strong understanding of security risks, vulnerabilities, and concepts in web and mobile applications is required. Proficiency in code review for JavaScript & Typescript, along with strong analytical and problem-solving skills, is essential. Good verbal and written communication skills are also necessary.

Responsibilities

The Staff Application Security Engineer will be responsible for identifying, exploiting, and mitigating security vulnerability risks in software applications, conducting security assessments and investigations, and performing regular security assessments on new projects, infrastructure, and code. They will identify and mitigate security vulnerabilities through manual testing, automated tools, threat modeling, and threat intelligence, while staying up-to-date with the latest offensive security techniques and blockchain security best practices. The role involves writing detailed reports, presenting findings, working with development teams to implement secure coding practices and ensure cryptographic function integrity, collaborating with other teams to integrate security throughout the organization, and participating in incident response and management activities, including leading large cross-team projects.

Skills

Application Security

Security Assessments

Vulnerability Management

Threat Modeling

Manual Testing

Automated Tools

Threat Intelligence

Offensive Security

Blockchain Security

Software Development Lifecycle (SDLC)

Reporting

Communication

Phantom

Multi-chain crypto wallet for digital assets

About Phantom

Phantom.app offers a multi-chain cryptocurrency wallet that allows users to manage various digital assets across different blockchain networks without needing multiple wallets. The wallet is designed for both experienced investors and beginners, featuring a user-friendly interface that simplifies the complexities of cryptocurrency management. Users can store, stake, and earn rewards on their tokens, and benefit from a fast, low-cost token swapping feature for trading digital assets. A key aspect of Phantom.app is its integration with major NFT marketplaces, enabling users to showcase, monitor, and sell their NFT collections easily. Security is emphasized through a self-custodial model, giving users full control over their funds, along with scam detection features and the option to connect a Ledger device for added protection. Phantom.app aims to provide a seamless and secure platform for cryptocurrency management, catering to the needs of a diverse clientele.

San Francisco, CaliforniaHeadquarters

2021Year Founded

$115.3MTotal Funding

SERIES_BCompany Stage

Crypto & Web3Industries

201-500Employees

Benefits

Competitive salary and equity.

Comprehensive insurance (medical/dental/vision) — 100% covered.

Stipend for your ideal remote / WFH set-up: laptop, headphones, and any other work gear you may need.

Flexible hours and a long-standing, supportive remote environment.

Monthly co-working space and mobile phone expense.

Unlimited vacation: Take time when you need it (and we really mean it).

Risks

Increased competition from Best Wallet with a superior user interface.

Rapid user growth may strain infrastructure and customer support.

Decision not to launch a token could lead to user dissatisfaction.

Differentiation

Phantom offers a multi-chain wallet supporting Solana, Ethereum, Polygon, and Bitcoin.

The wallet integrates with major NFT marketplaces for easy NFT management and transactions.

Phantom prioritizes security with self-custodial features and scam detection capabilities.

Upsides

Phantom's user base tripled to 3.2 million MAUs by January 2024.

Partnership with Transak enhances seamless digital asset purchases for users.

Integration with dYdX facilitates significant trading volume, boosting platform activity.

Land your dream remote job 3x faster with AI

Try Jobo Free