ConsenSys is the leading Ethereum software company. We enable developers, enterprises, and people worldwide to build next-generation applications, launch modern financial infrastructure, and access the decentralized web.
Read more about this company
We are looking for a Sr Application Security Engineer who will lead our Application Security Engineers and work with development teams and product managers to ensure MetaMask products are designed and implemented to the highest security standards.
What you will do:
Supporting, analyzing & patching security incidents in production web services and mobile applications
Write PoC’s to prove vulnerabilities which will be included in internal and external reports
Review and ensure that patch code meets the standards set by the repository owners and maintainers
Validate that patches actually fix the reported vulnerabilities
Review vulnerability reports drafted by the TPM for accuracy from the engineer perspective
Participate in weekly meetings as necessary
Work with engineers on security-related issues
What we are looking for:
3+ years of work experience in an enterprise engineering domain
1+ years of work experience in any security engineering domain using threat modeling
Excellent problem-solving skills and sharp attention to detail
Solid written and verbal communication skills
Familiarity with the Ethereum blockchain and Decentralized Applications
Proficient in JavaScript & Typescript
Experience with modern JS frameworks React or React Native
Enthusiasm for shipping high-quality code and helping peers do the same
Proactiveness and be self-driven to be successful working in a remote environment
Understanding of web development practices and terminology
Relevant knowledge of modern web and mobile app security landscape, real-world attacks and mitigations
A belief in our mission and values
Bonus points:
Blockchain expertise
Native mobile development iOS/Android
Previous experience working with Application Security Engineering teams
Gmail
Yahoomail