• The primary responsibility of this role is for CertiK’s security-related services
• If you are excited about hacking, threat modeling, scanning, auditing, designing, and enhancing the security of applications across the board then you will thrive in this role
• While you work with clients, we will also provide you with plenty of opportunities to get involved with research and development efforts to help us raise the standards of blockchain security
• Perform security assessments on web, mobile, thick client applications, and browser extensions
• Conduct external and internal network penetration tests
• Perform security source code reviews
• Perform cloud security reviews
• Develop comprehensive pentest reports for both technical and non-technical audiences
• Research and develop innovative techniques, tools, and methodologies for pentesting applications in the blockchain space
• Contribute to the community by developing tools, presentations, and blog posts

Participated in bug bounty programs and audit contests

• Passionate about cryptocurrency, DeFi, and blockchain, with a willingness to learn Web3 technologies such as smart contracts
• Minimum of 4 years of experience in application security and penetration testing
• Experienced in source code review for different languages, with a strong understanding of JavaScript and TypeScript
• Experienced in mobile application penetration testing
• Familiar with cloud platforms and their security risks, such as AWS, Azure, and GCP
• Experience in programming with scripting languages such as Python and Bash
• Solid understanding of cryptography
• BS/MS/PhD in Computer Science or Information Security
• Strong spoken and written communication skills
• Experienced in pentesting Web3 applications such as crypto exchanges, wallets, Dapps, and key custodian solutions
• Experienced in smart contract security audits
• Familiar with browser extension architecture and security risks

Actively participate in the blockchain security community

OSCP, OSWE, OSCE, GWAPT, or comparable certification

• Published security-related blog posts and spoken at security conferences and/or local meetups
• Target annual base salary for this role performed in the US is $100,000 - $180,000

CertiK is proud to offer medical, vision, and dental insurance, 401(k) plan with company matching, life and accidental death and dismemberment insurance, HSA (with high deductible plan), FSA, and other benefits to all full-time employees, along with flexible paid time off and holidays