MLabs

MLabs

MLabs is a Haskell, Rust, Blockchain, and AI consultancy specializing in mission-critical software development, cross-team collaboration, and cutting-edge value delivery for fintech, blockchain, and information technology sectors.

Internet Software & Services
11-50
Founded 2018

Description

  • Conduct end-to-end security assessments across blockchain systems, including cryptographic primitives, protocol architecture, smart contracts, and deployed infrastructure.
  • Own threat modeling and security architecture reviews across all stages of product development.
  • Identify vulnerabilities through hands-on code review, adversarial testing, and proof-of-concept exploit development.
  • Test native services, EVM-compatible contracts, cross-chain bridges, and consensus-layer components for real-world security issues.
  • Partner with core engineering teams to turn cryptographic and protocol risks into prioritized remediation work.
  • Define and enforce security gates before production deployment.
  • Build and improve security tooling, fuzzing infrastructure, and CI/CD security automation.
  • Track emerging blockchain and Web3 attack patterns and drive mitigation strategies across the codebase.

Requirements

  • Proven hands-on experience finding vulnerabilities and testing blockchain protocols, smart contracts, nodes, and APIs.
  • Strong threat modeling and security architecture review experience for distributed cryptographic systems.
  • Direct experience assessing cross-chain protocols, threshold signature schemes, or similar cryptographic systems with complex trust assumptions.
  • Experience auditing or breaking cross-chain bridges.
  • Deep working knowledge of applied cryptography, including BLS signatures, pairing-based schemes, polynomial commitments, and Fiat-Shamir constructions.
  • Ability to reason about cryptographic failure modes and trust model tradeoffs in production environments.
  • Mastery of blockchain security and secure coding practices across both EVM-compatible and non-EVM chains.
  • Experience with security testing tools such as static analysis, dynamic analysis, and fuzzing.
  • Experience building custom fuzzing harnesses or security test infrastructure.
  • Ability to read, review, and audit cryptographic code written in Rust and/or Java.
  • Understanding of memory safety, constant-time correctness, secret handling, and JNI-related security risks.
  • Preferred: Experience designing and operating grammar-aware fuzzing campaigns against gRPC, JSON-RPC, or protocol-level endpoints.
  • Preferred: Experience building classifier pipelines to isolate security signals from noise or other custom security automation.
  • Preferred: Prior security work on Ethereum consensus clients or production threshold signature systems.
  • Preferred: Experience integrating AI-assisted workflows into security review and triage.

Benefits

  • Competitive salary and compensation package, including $75K - $85K compensation.
  • Remote work across APAC and EU time zones.
  • Opportunity to work on enterprise Web3 infrastructure and cryptographic innovation.
  • Collaborative engineering environment focused on complex distributed systems challenges.
  • Flexible working arrangements.
  • Comprehensive professional growth opportunities.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Senior Manager, Engineering

Sumo Logic 251-1K Internet Software & Services

Sumo Logic is hiring a Senior Manager, Engineering for Application Security to lead global programs that improve product security, reliability, and operational efficiency across its cloud platform.

Agile AWS C++ Docker GCP Java Kafka Kubernetes OWASP Ruby Scala SIEM
13 hours, 47 minutes ago

Security Engineering - Apps and Cloud Security

CallTek 51-250 Internet Software & Services

A security engineer at the company will own cloud and application security initiatives across CSPM, CIEM, CWPP, and AppSec platforms, with a focus on securing multi-cloud environments and enabling DevSecOps.

AWS DevSecOps GCP
13 hours, 47 minutes ago

Senior Configuration Engineer, Product AppSec

Veeam Software 1K-5K Internet Software & Services

Veeam is hiring a Senior Configuration Engineer to lead enterprise release management and delivery automation across cloud-native, SaaS, and AI product environments.

Ansible Azure Bash CI/CD DevSecOps Docker GitOps Jenkins Kubernetes PowerShell Python Secrets Management Terraform
6 days, 12 hours ago

Senior Cyber-Security Operations Analyst, Product AppSec

Veeam Software 1K-5K Internet Software & Services

Veeam is hiring a Senior Cyber Security Operations Analyst to help design and scale secure Azure-based development and QA environments while improving CI/CD delivery and integrating security across the software lifecycle.

Ansible AWS Azure Bash CI/CD DevSecOps Docker GCP Git GitHub Actions Jenkins Kubernetes PowerShell Python Secrets Management Terraform
6 days, 13 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers