RemoteLeaf Logo
Log in Sign up

Sr. Security Engineer (Penetration Testing)

1 month ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
Android AWS Azure Bash Blockchain Encryption GCP iOS JavaScript Penetration Testing Python TypeScript
Apply Now
CertiK

CertiK

$152M raised
View All Jobs 5

Description

  • Perform security assessments on web, mobile, thick-client applications, and browser extensions.
  • Plan and execute external and internal network penetration tests.
  • Conduct security source code reviews across multiple languages and produce actionable findings.
  • Perform cloud security reviews of platforms such as AWS, Azure, and GCP.
  • Develop comprehensive penetration test reports tailored to both technical and non-technical audiences.
  • Research and develop new pentesting techniques, tools, and methodologies for applications in the blockchain/Web3 space.
  • Contribute to community-facing materials by developing tools, presentations, and blog posts.
  • Collaborate with clients and internal R&D to threat model, scan, audit, design, and enhance application security.

Requirements

  • Minimum of 4 years of experience in application security and penetration testing.
  • Passion for cryptocurrency, DeFi, and blockchain, with willingness to learn Web3 technologies such as smart contracts.
  • Experience in source code review for multiple languages, with strong understanding of JavaScript and TypeScript.
  • Experience in mobile application penetration testing.
  • Familiarity with cloud platforms and their security risks (AWS, Azure, GCP).
  • Experience programming with scripting languages such as Python and Bash.
  • Solid understanding of cryptography.
  • BS/MS/PhD in Computer Science or Information Security (or equivalent experience).
  • Strong spoken and written communication skills.
  • (Nice to have) Experience pentesting Web3 applications (crypto exchanges, wallets, DApps, key custodians), smart contract security audits, browser extension security, participation in bug bounties/audit contests, published security write-ups or talks, and certifications such as OSCP, OSWE, OSCE, or GWAPT.

Benefits

  • Target U.S. annual base salary range: $100,000 - $180,000 (final offer depends on skills and experience).
  • Remote work option (#LI-Remote).
  • Medical, vision, and dental insurance.
  • 401(k) plan with company matching.
  • Life and accidental death & dismemberment (AD&D) insurance.
  • HSA (with high deductible plan) and FSA, plus flexible paid time off and holidays.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Databricks

Head of Corporate Engineering

Databricks 1K-5K IT Services

Databricks is hiring a Head of Corporate Engineering to lead global enterprise engineering and operations, building and scaling secure cloud infrastructure, identity and access, endpoints, collaboration and engineering tools to enable developer velocity and enterprise compliance.

United States Full-time Lead Infrastructure Engineer Security Engineer
$265k-$364k
Agile AWS Azure Confluence GCP GitHub JIRA macOS
1 month ago
ClickHouse

Incident Response Security Engineer

ClickHouse 51-250 IT Services

Security practitioner role at ClickHouse focused on scaling incident detection and response capabilities, driving adoption of security processes and tooling, and protecting the company’s cloud and product infrastructure for customer-facing services.

United Kingdom Full-time Senior Security Engineer
AWS Azure ClickHouse GCP Penetration Testing Python SIEM
1 month ago
Samsara

Senior Security Engineer - Vulnerability Management

Samsara 1K-5K IT Services

Senior Security Engineer at Samsara responsible for deploying, operating, and improving the company’s Vulnerability Management program to reduce software vulnerabilities and protect customer-facing infrastructure.

United States Full-time Senior Security Engineer
$158k-$238k
AWS CI/CD DevSecOps Go Python Serverless Terraform
1 month ago
ARETUM

Junior DevSecOps Engineer - Contingent

ARETUM Construction & Engineering

Junior DevSecOps Engineer at Aretum supporting a federal client to operate, automate, and secure cloud-based systems and CI/CD pipelines to enable reliable, compliant deployments.

United States Full-time Junior DevOps Engineer Security Engineer
Agile Ansible AWS AWS CDK Azure Chef CI/CD Docker Encryption Git GitLab CI Grafana JIRA Kubernetes Linux LXC Prometheus Puppet SaltStack Scrum Serverless Terraform
1 month ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers