Staff Protocol Security Engineer
dYdX
·
Posted:
April 17, 2023
·
Remote
About the position
At dYdX, the successful candidate will have the opportunity to build cutting-edge decentralized technology that will revolutionize global financial markets. As an early-stage employee, you will play a crucial role in shaping the direction of the company. The ideal candidate will have extensive experience in backend engineering and/or cybersecurity, with a strong understanding of CS fundamentals. They will be responsible for writing and reviewing secure smart contract and protocol code, assessing and leading integrations of security partners and tools, and proactively identifying and reducing security risks in the code base. The role offers a salary range of $201K to $350K USD and is open to candidates in New York City or remote within the US.
Responsibilities
- Write and review secure smart contract and protocol code
- Partner with developers to continuously review and assess new protocol releases, identify the risks, and help provide solutions
- Assess and lead integrations of security partners and tools as needed
- Investigate events, triage potential incidents and work closely with our teams during these incidents to help drive response efforts
- Review new and existing system designs to ensure we have secure and reliable backend systems.
- Ability to discover and patch security vulnerabilities (OWASP Top 10)
- Proactively identify and reduce security risks in our code base
- Find and remove outdated and vulnerable code and code libraries
- Develop security training and guidance to internal development teams
- Work together with multi-functional teams to develop the best overall product.
- Manage individual projects priorities, deadlines and deliverables with your technical expertise.
Requirements
- 7+ years of backend engineering experience and/or security engineering/cybersecurity experience
- Experience securing infrastructure hosted on cloud server providers like AWS, GCP, and Azure
- Experience with testing and screening security software and monitoring networks for security breaches
- Ability to write and review secure smart contract and protocol code
- Ability to assess and lead integrations of security partners and tools as needed
- Ability to investigate events, triage potential incidents and work closely with teams during incidents to help drive response efforts
- Ability to review new and existing system designs to ensure secure and reliable backend systems
- Ability to discover and patch security vulnerabilities (OWASP Top 10)
- Ability to proactively identify and reduce security risks in the code base
- Ability to find and remove outdated and vulnerable code and code libraries
- Ability to develop security training and guidance to internal development teams
- Ability to manage individual project priorities, deadlines, and deliverables with technical expertise
- Strong understanding of CS fundamentals
- Ability to write secure, efficient, high-quality code
- Experience with or open to learning Solidity, Go JavaScript, TypeScript, Node.js, PostgreSQL, Redis, Kafka, Express, WebSockets, Docker, AWS, Terraform
- Fast learner who can quickly master new technologies
- Interest in building out a team of security engineers (nice to have)
- Strong interest in decentralized finance (nice to have)
- Experience building blockchain applications or smart contracts (nice to have)
- Experience architecting and developing solutions to ambiguous problems with significant impact (nice to have)
- CS Degree or equivalent experience (nice to have)
- Preferred location NYC (nice to have)