Senior Security Engineer

CertiK, Inc.

Job Overview

Location

New York, New York

Job Type

Full-time

Full Job Description

📋 Description

• Design, implement, and maintain enterprise-grade security controls for blockchain protocols, smart contracts, and decentralized applications to mitigate vulnerabilities and ensure compliance with industry standards.
• Conduct formal verification of smart contracts using advanced mathematical techniques to prove correctness and eliminate exploitable logic flaws before deployment.
• Perform comprehensive penetration testing on Web3 infrastructure, including DeFi protocols, NFT marketplaces, and DAOs, identifying attack vectors and delivering actionable remediation plans.
• Lead incident response efforts for live security breaches on blockchain networks, coordinating with engineering, legal, and client teams to contain threats and restore system integrity.
• Develop and operate real-time on-chain monitoring systems powered by AI to detect anomalous transactions, suspicious wallet activity, and potential exploits as they occur.
• Collaborate with product and engineering teams to integrate security-by-design principles into the development lifecycle of new blockchain applications and protocols.
• Author detailed security audit reports for enterprise clients, translating complex technical findings into clear, actionable recommendations for both technical and non-technical stakeholders.
• Stay current with emerging threats in the Web3 ecosystem, including reentrancy attacks, oracle manipulation, and front-running exploits, and update internal tooling and methodologies accordingly.
• Support global client engagements by providing security consulting services to top-tier blockchain projects, ensuring adherence to CertiK’s rigorous security benchmarks.
• Contribute to the development of CertiK’s proprietary AI-driven security tools, providing feedback from real-world audits and penetration tests to improve detection accuracy and automation.
• Participate in cross-functional security reviews with teams across North America, Asia, and Europe to align on threat models, response protocols, and best practices.
• Maintain documentation of security architectures, incident response playbooks, and audit methodologies to ensure knowledge continuity and team scalability.
• Represent CertiK at industry conferences and security summits, sharing insights on blockchain vulnerabilities and defense strategies with the broader Web3 community.
• Work closely with legal and compliance teams to ensure client solutions meet regulatory requirements across jurisdictions, including AML/KYC and financial reporting standards.
• Train junior engineers and audit team members on secure coding practices, formal verification techniques, and Web3 threat landscapes.
• Monitor and evaluate third-party security tools and vendors to ensure alignment with CertiK’s technical standards and client expectations.
• Proactively identify gaps in existing security infrastructure and propose scalable solutions to enhance the resilience of the company’s own systems and client platforms.

🎯 Requirements

• Proven experience in blockchain security, including smart contract auditing, formal verification, or penetration testing of Web3 protocols
• Deep understanding of Ethereum, Solana, or other major blockchain architectures and their associated attack surfaces
• Hands-on experience with formal verification tools such as Coq, TLA+, or CertiK’s proprietary systems
• Demonstrated track record of leading incident response efforts for live blockchain exploits
• Strong proficiency in Solidity, Rust, or other smart contract languages
• Experience developing or using AI-powered security monitoring tools for on-chain activity

🏖️ Benefits

• Competitive salary and performance-based bonuses
• Comprehensive health, dental, and vision insurance
• Unlimited paid time off and flexible work hours
• Annual stipend for professional development and conference attendance

Skills & Technologies

Senior

Onsite

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

CertiK, Inc.

Visit Website

About CertiK, Inc.

CertiK is a blockchain security firm that performs formal verification audits of smart contracts and decentralized protocols. Its offerings include static analysis, penetration testing, on-chain monitoring via the Skynet platform, KYC verification and incident response. Founded in 2018 by Yale and Columbia professors, the company secures DeFi, NFT, layer-1 and bridge projects, identifying vulnerabilities before deployment and providing real-time threat detection after launch.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.