Security Engineer at Asymmetric Research specializing in security for L1/L2 blockchains and DeFi protocols. Design controls, conduct audits, and analyze vulnerabilities in Rust-based platforms.
Responsibilities
Design and implement security and defense-in-depth controls to prevent and limit vulnerabilities.
Perform cutting-edge security research in Solana and other Rust-based blockchains and smart contract platforms.
Develop security tooling and developer workflows to aid in the early detection of vulnerabilities.
Collaborate with core contributors to conduct internal security audits.
Shepherd external security audits with the help of leading third-party audit firms.
Operate bug bounty programs on Immunefi, including leading, monitoring, and triaging submissions.
Work in a diverse, decentralized team environment with Web3 professionals.
Clearly communicate security risks, findings, and proposed solutions.
Adhere to the highest standards of integrity, trust, and professionalism.
Requirements
Strong desire to understand how things work, with the ability to quickly absorb new information.
Familiarity with one or more Rust-based smart contract platforms (e.g., Solana, CosmWasm, NEAR), with a strong preference for existing Solana experience.
Proven experience as a consultant, engineer, bug bounty hunter, or auditor.
Prior experience working with open-source development practices.
Willingness and aptitude to learn multiple Rust-based and C-based runtimes.
Understanding of blockchain infrastructure technologies such as bridging or oracles.
Prior experience with code reviews.
Prior experience with reverse engineering, fuzzing, and/or binary exploitation.
Prior high ranking on bug bounty leaderboards, code audit contests, or CTF competitions.
Security Developer coordinating vulnerabilities and malware issues for the Python Software Foundation. Collaborating with teams to enhance security practices and document threat models.
Presales Security Expert supporting sales leads and educating customers on security at Fortinet. Responsible for technical resource during sales calls and post - sales training.
IAM Director managing customer - facing identity and access management security programs at RBC. Assessing risks, developing controls, and ensuring compliance with standards and regulations.
Lead AI Red Team focusing on adversarial testing and security for enterprise - scale AI systems. Collaborate with engineering and compliance to map vulnerabilities and document findings.
Intern in operational security at Investissement Québec, supporting security alert management and vulnerability tracking in a supervised learning environment.
IT Information Security Lead at Mirego, responsible for technology and information security management. Overseeing compliance and IT strategies while maintaining operational efficiency.
Cybersecurity Specialist focusing on offensive security for Exposant 3. Performing penetration testing, security audits, and team knowledge transfer in a hybrid work setup.
Financial security advisor in life and health insurance, developing and maintaining client relationships. Selling insurance products and assessing customer needs to provide personalized solutions.
Senior Security Engineer designing and maintaining Microsoft 365 security solutions at ResMed. Focusing on compliance, incident response, and collaboration with global teams.
Senior Infrastructure professional solving practical security challenges and improving enterprise systems security at Confluence. Focused on implementation, remediation, and secure operations across Windows and Linux environments.