Consensys
Senior Application Security Engineer
Remote Office of the CSO role with clear candidate location fit.
PostedRecently added
Eligible countries60 accepted countries
Seniority signalSenior
Work settingRemote
Accepted candidate locations
Role overview
Senior Application Security Engineer
Requirements and responsibilities
Readable role content extracted into sections for faster review.
Details
- 6+ years of experience building and securing software, including hands-on product or application security experience.
- Experience securing modern backend systems, web applications, and APIs.
- Experience performing threat modelling, security design reviews, and vulnerability assessment.
- Experience securing JavaScript-based applications across web and/or mobile (Node.js, React, React Native preferred).
- Strong coding skills, with the ability to work directly with engineers to identify and fix vulnerabilities or build secure solutions.
- Familiarity with Blockchain technology (particularly Ethereum), Decentralized Applications and crypto wallets
- Solid understanding of the modern web and mobile security landscape, including common attack vectors and mitigations.
- Strong communication skills, with the ability to influence engineering decisions and collaborate effectively in a remote environment.
- Self-driven and proactive, comfortable operating in a high-autonomy, distributed team.
- Alignment with our mission and values.
- Experience working as a software developer.
- Deep knowledge of Ethereum (and other blockchains), Decentralized Applications and crypto wallets.
- Knowledge of smart contract implementation and security.
- You’re a MetaMask user!
- Determine the root cause and severity of vulnerabilities reported to us through our bug bounty platform.
- Interface with ethical hackers, triage reports, and guide product engineering teams to resolution.
- Document identified vulnerabilities in a way that allows for our engineering team to take quick action.
- Write code to support the development of security engineering projects, or fix vulnerabilities in MetaMask client applications. This includes the development of AI tooling for vulnerability determination and resolution in order to keep pace with the changing AI-powered vulnerability detection landscape.
- Assess potential security vulnerabilities within our applications, and work with development teams to ensure remediation in our established SLAs.
- Support product teams as they develop new features by conducting design reviews, threat modeling, security testing, and code reviews.
- Identify gaps in MetaMask’s secure software development life cycle (SSDLC), and take initiative leading efforts to address them.
- Participate and contribute to team meetings, roadmap planning, and discussions.
- Validate that security patches address reported vulnerabilities and test for any potential bypasses
- Proactively prevent future occurrences of a vulnerability through developing automation, security controls, and educating developers.
- Pave your own path in how you want to make MetaMask more secure.
Similar roles
Keep a backup shortlist.
Node.js, React 8 accepted countries
Senior Software EngineerBaltimore BannerView role Node.js, React 8 accepted countries
Talent Community| Senior JavaScript Full Stack EngineerHiring teamView role React 8 accepted countries
PHP DeveloperRedwoodView role Content Classification, English 9 accepted countries
Taxonomy Analyst (Swedish fluency)IndeedView role Stack
Use these tags to compare similar remote roles.
Location eligibility
Candidates should apply only when their profile country is listed here.
Your profileCountry not setSign in to check your country against this role.
View all 60 accepted countries
AlbaniaAlgeriaAustriaBahrainBelgiumBotswanaBulgariaCroatiaCyprusCzechiaDenmarkEgyptEstoniaEthiopiaFinlandFranceGermanyGhanaGreeceHungaryIcelandIrelandIsraelItalyJordanKenyaKuwaitLatviaLithuaniaLuxembourgMaltaMauritiusMoldovaMontenegroMoroccoNetherlandsNigeriaNorth MacedoniaNorwayOmanPolandPortugalQatarRomaniaSaudi ArabiaSerbiaSlovakiaSloveniaSouth AfricaSpainSwedenSwitzerlandTanzaniaTunisiaUgandaUkraineUnited Arab EmiratesUnited KingdomUSAZambia
Hiring flow
WithMira shows the role, then sends candidates to the company application.
1Check role fit, stack, and location eligibility in WithMira.
2Open the company application page from the tracked apply link.
3Save the role or subscribe for similar opportunities before leaving.