Phantom

Staff KMS Security Engineer (Security)

Remote

Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, Blockchain, Financial TechnologyIndustries

Position Overview

  • Location Type: Remote
  • Job Type: Full-Time
  • Salary: Not specified

Phantom is revolutionizing the way millions of people interact with the crypto ecosystem. Our self-custodial wallet offers a seamless, unified experience for managing accounts and tokens across Solana, Bitcoin, Ethereum, and Polygon, empowering users with a single, convenient solution. By integrating cutting-edge security features and launching innovative tools for an enhanced personalized user experience, Phantom is able to provide a next-generation, safe and easy to use self-custodial wallet for everyone. This strategy has allowed Phantom to achieve significant milestones including surpassing 15 million MAU’s, reaching #1 in the Google play store finance category, and consistently trending as a Top 50 app across all categories, right next to X, PayPal, Coinbase, and ChatGPT.

Responsibilities

  • Own critical security infrastructure/services for the company (Key Management for wallet infrastructure).
  • Perform regular security assessments on new projects, infrastructure and code.
  • Identify and mitigate security vulnerabilities in code, systems and networks through manual testing, automated tools, threat modeling and threat intelligence.
  • Keep up to date with the latest offensive security techniques, application security threats, and best practices in the blockchain space, and recommend improvements to security posture.
  • Write detailed reports of your findings and present them to management and technical teams, and help to prevent real-world attacks.
  • Work with development teams to implement secure coding practices and to ensure the integrity of cryptographic functions.
  • Collaborate with other teams such as development and platform to ensure that security is integrated throughout the organization.
  • Participate in incident response and incident management activities.
  • Lead large cross-team projects.

Requirements

  • 7+ years of experience in offensive security techniques, with a focus on blockchain technology and cryptography.
  • Experience working with Key Management Services.
  • Strong understanding of security risks, vulnerabilities and concepts in web and mobile applications.
  • Proficient in code review for JavaScript & Typescript with a strong understanding of application security threats and offensive security techniques.
  • Ability to write PoCs to prove vulnerabilities, review and ensure that patch code meets the standards set by the repository owners and maintainers.
  • Strong analytical and problem-solving skills.
  • Good verbal and written communication skills.

Nice to Have

  • Experience working as a security software engineer at crypto companies.
  • Experience developing key management solutions.
  • Experience working with HSM, trust computing, TEEs (AWS Nitro Enclave or Intel SGX).

Why Work with Us

  • Opportunity: We are a team of experienced builders in the blockchain and crypto industry.
  • Our journey began from users seeking an easy, seamless path to accessing the crypto ecosystem. This passion fueled our exponential growth, allowing us to onboard over 7M+ active users in just over three years; with our user base growing weekly.
  • Our dedication to a secure and seamless user experience has made us the leading wallet on Solana as well as our multi-chain approach enhances our platform's versatility, meeting the needs of a diverse and growing user base.
  • By staying at the forefront of technology and user expectations, we continue to innovate and set industry standards on self-custodial crypto wallets.

Skills

Security Vulnerability Assessment
Penetration Testing
Threat Modeling
Threat Intelligence
Security Infrastructure
Key Management
Application Security
Blockchain Security
Security Assessments
Security Investigations

Phantom

Multi-chain crypto wallet for digital assets

About Phantom

Phantom.app offers a multi-chain cryptocurrency wallet that allows users to manage various digital assets across different blockchain networks without needing multiple wallets. The wallet is designed for both experienced investors and beginners, featuring a user-friendly interface that simplifies the complexities of cryptocurrency management. Users can store, stake, and earn rewards on their tokens, and benefit from a fast, low-cost token swapping feature for trading digital assets. A key aspect of Phantom.app is its integration with major NFT marketplaces, enabling users to showcase, monitor, and sell their NFT collections easily. Security is emphasized through a self-custodial model, giving users full control over their funds, along with scam detection features and the option to connect a Ledger device for added protection. Phantom.app aims to provide a seamless and secure platform for cryptocurrency management, catering to the needs of a diverse clientele.

San Francisco, CaliforniaHeadquarters
2021Year Founded
$115.3MTotal Funding
SERIES_BCompany Stage
Crypto & Web3Industries
201-500Employees

Benefits

Competitive salary and equity.
Comprehensive insurance (medical/dental/vision) — 100% covered.
Stipend for your ideal remote / WFH set-up: laptop, headphones, and any other work gear you may need.
Flexible hours and a long-standing, supportive remote environment.
Monthly co-working space and mobile phone expense.
Unlimited vacation: Take time when you need it (and we really mean it).

Risks

Increased competition from Best Wallet with a superior user interface.
Rapid user growth may strain infrastructure and customer support.
Decision not to launch a token could lead to user dissatisfaction.

Differentiation

Phantom offers a multi-chain wallet supporting Solana, Ethereum, Polygon, and Bitcoin.
The wallet integrates with major NFT marketplaces for easy NFT management and transactions.
Phantom prioritizes security with self-custodial features and scam detection capabilities.

Upsides

Phantom's user base tripled to 3.2 million MAUs by January 2024.
Partnership with Transak enhances seamless digital asset purchases for users.
Integration with dYdX facilitates significant trading volume, boosting platform activity.

Land your dream remote job 3x faster with AI