RemoteLeaf Logo
Log in Sign up

Sr. Security Engineer (Penetration Testing)

1 month, 3 weeks ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
Android AWS Azure Bash Blockchain Encryption GCP iOS JavaScript Penetration Testing Python TypeScript
Apply Now
CertiK

CertiK

$152M raised
View All Jobs 22

Description

  • Perform security assessments on web, mobile, thick-client applications, and browser extensions.
  • Plan and execute external and internal network penetration tests.
  • Conduct security source code reviews across multiple languages and produce actionable findings.
  • Perform cloud security reviews of platforms such as AWS, Azure, and GCP.
  • Develop comprehensive penetration test reports tailored to both technical and non-technical audiences.
  • Research and develop new pentesting techniques, tools, and methodologies for applications in the blockchain/Web3 space.
  • Contribute to community-facing materials by developing tools, presentations, and blog posts.
  • Collaborate with clients and internal R&D to threat model, scan, audit, design, and enhance application security.

Requirements

  • Minimum of 4 years of experience in application security and penetration testing.
  • Passion for cryptocurrency, DeFi, and blockchain, with willingness to learn Web3 technologies such as smart contracts.
  • Experience in source code review for multiple languages, with strong understanding of JavaScript and TypeScript.
  • Experience in mobile application penetration testing.
  • Familiarity with cloud platforms and their security risks (AWS, Azure, GCP).
  • Experience programming with scripting languages such as Python and Bash.
  • Solid understanding of cryptography.
  • BS/MS/PhD in Computer Science or Information Security (or equivalent experience).
  • Strong spoken and written communication skills.
  • (Nice to have) Experience pentesting Web3 applications (crypto exchanges, wallets, DApps, key custodians), smart contract security audits, browser extension security, participation in bug bounties/audit contests, published security write-ups or talks, and certifications such as OSCP, OSWE, OSCE, or GWAPT.

Benefits

  • Target U.S. annual base salary range: $100,000 - $180,000 (final offer depends on skills and experience).
  • Remote work option (#LI-Remote).
  • Medical, vision, and dental insurance.
  • 401(k) plan with company matching.
  • Life and accidental death & dismemberment (AD&D) insurance.
  • HSA (with high deductible plan) and FSA, plus flexible paid time off and holidays.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Smartsheet

Software Engineer I - Secure Platform Operations (Remote Eligible)

Smartsheet 1K-5K Internet Software & Services

Smartsheet is hiring a Software Engineer I to join its global Secure Platform Operations team in the U.S. to help build and secure scalable platform infrastructure, automate operational work, and improve developer experience in a multi-cloud environment.

United States Full-time Entry Level Security Engineer
$108k-$148k
AWS Bash CI/CD DNS Docker GitHub GitLab Go HTTP Kubernetes Linux Python TCP/IP Terraform Unix
13 minutes ago
Affirm

Senior Software Engineer - IAM

Affirm 1K-5K Diversified Financial Services

Affirm is seeking a software engineer to evolve its enterprise identity platform, building automation and AI-assisted workflows around SailPoint and Auth0 in a remote role based in Spain.

Spain Full-time Senior Security Engineer Software Engineer
$92k-$124k
AWS Buildkite CI/CD GitHub JIRA Python Terraform
13 minutes ago
Marqeta

Manager, Vulnerability & Data Security

Marqeta 251-1K Diversified Financial Services

Marqeta is hiring an Information Security Manager to lead vulnerability management and build a data security program for its fully cloud-based environment.

United States Full-time Senior Operations Manager Security Engineer
$167k-$244k
AWS Azure CI/CD Databricks DevSecOps GCP SIEM Snowflake
13 minutes ago
Mozilla

Staff Security Engineer

Mozilla 251-1K Internet Software & Services

Mozilla is hiring an Incident Responder to monitor, investigate, and mitigate security attacks across its products and services, helping protect users and maintain the integrity of a global, privacy-focused internet platform.

United States Full-time Senior Security Engineer
$138k-$218k
AWS Azure GCP Heroku SIEM Splunk
43 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers