Stellar Development Foundation is hiring a

Web3 Application Security Engineer

Interested in working on cutting-edge blockchain technology and creating equitable access to the global financial system? Since 2014, the mission-driven team at the Stellar Development Foundation (SDF) has helped fuel the tremendous growth of the Stellar blockchain network, an open-source platform that operates at high-scale today. Developers and companies around the world build on it, and the SDF team is expanding to support the rapidly growing and changing Stellar ecosystem.

SDF is looking for an Application Security Engineer who will work closely with our engineering teams as well as third-party groups (including our HackerOne bug bounty program) to ensure SDF’s products are secure. In this role, you will assist in defining and implementing a variety of security controls and tools, help define our security SDLC, and triage application security vulnerabilities.

In this role you will:

• Automate security validations of coding best practices.
• Automate security validations of infosec policies.
• Support and evolve our HackerOne bug bounty program. (https://hackerone.com/stellar/)
• Support and evolve our security vulnerability management.
• Develop security training and disseminate secure coding best practices to our engineers.
• Design, implement and deploy tools to detect vulnerabilities in SDF infrastructure and software

You have:

• 3+ years of experience on a SecOps, AppSec team and/or Software Development team.
• Strong understanding of security libraries and common security flaws.
• Development experience with Golang and/or Python is preferred. C++ and Rust experience is a plus.
• Experience with “Shift Left” security.
• Experience with NIST, MITRE, OWASP frameworks
• Experience with common security / pen testing tools, nmap, Burp Suite
• Experience with automated security scanners: Nessus, Qualys
• A strong understanding of OSI protocols such as TCP/IP, UDP, HTTP, HTTPS
• A good understanding of AWS/GCP access controls and best practices.
• Experience with linux container solutions like docker
• A good understanding of Ubuntu linux
• Good written and verbal communication skills and an ability to articulate complex topics clearly.
• Prior exposure to distributed systems or blockchain technology is a plus.

We offer competitive pay with a base salary range for this position of $145,000 - $210,000 depending on job-related knowledge, skills, experience, and location. In addition, we offer lumen-denominated grants along with the following perks and benefits:

Apply Now: