| Job Position | Company | Posted | Location | Salary | Tags |
|---|---|---|---|---|---|
Zenith | Remote |
| |||
Keyrock | United States | $72k - $77k | |||
Keyrock | New York, NY, United States | $90k - $98k | |||
Helius | United States | $84k - $150k | |||
| Learn job-ready web3 skills on your schedule with 1-on-1 support & get a job, or your money back. | | by Metana Bootcamp Info | |||
1010 trading | Remote |
| |||
Okx | Remote | $122k - $180k | |||
Jumpcrypto | Remote | $150k - $200k | |||
Gsrmarkets | Remote | $64k - $86k | |||
Gsrmarkets | Remote | $90k - $120k | |||
Keyrock | London, United Kingdom | $22k - $31k | |||
Keyrock | Brussels, Belgium | $22k - $31k | |||
Blockchain | Remote | $73k - $145k | |||
Kronosresearch | Remote | $105k - $112k | |||
Bitgo | Remote | $165k - $210k | |||
B2c2 | Remote | $87k - $150k |
About Zenith
Zenith is developing an EVM environment built as an extension of the Canton Network, enabling developers to deploy programmable financial applications within one of the fastest-growing institutional blockchain ecosystems, trusted by JPMorgan, DTCC, Nasdaq, SBI Holdings, Broadridge, and Goldman Sachs.
By combining Ethereum’s developer ecosystem with Canton’s institutional infrastructure, Zenith sits at the intersection of DeFi innovation and global financial markets.
Role Summary
We are hiring a hands-on Head of Security to own and build our security posture end-to-end. This is a deeply technical role, not a policy-only or management-only position.
You will define, implement, and continuously improve security across our stack — from blockchain protocol internals to production infrastructure and company processes.
Responsibilities
- Own company-wide security strategy and execution
- Design and operate incident response & emergency procedures
- Active attack handling
- Post-mortems and hardening
- Drive secure system architecture across:
- Blockchain/protocol layer
- Backend services & APIs
- Infrastructure (cloud + networking)
- Establish and enforce secure development practices
- Lead security audits, reviews, and threat modeling
- Perform or supervise deep vulnerability research
- Define and improve internal processes for operational security
- Act as the final authority in security-critical decisions
Required Background
Strong engineering background (you’ve built real systems, not just reviewed them)
- Proven experience in offensive and defensive security
- Vulnerability research
- Security audits
- Incident response
- Deep understanding of:
- Blockchain systems
- Smart contract models
- Execution environments
- Consensus mechanisms
- P2P networking & RPC layers
- Linux internals
- Distributed systems & networking
- Blockchain systems
- Strong programming skills in:
- Rust and Go
- Experience securing:
- Cloud infrastructure (GCP/AWS or equivalent)
- Production-grade systems
Strongly Preferred Experience with:
- Red team operations
- Large-scale security architecture
- JVM ecosystem (Java / Scala)
- Experience from fintech or other security-critical domains
- Demonstrated contributions:
- Audits, exploits, research, or security tooling
- Open-source or verifiable real-world work
What We Explicitly Don’t Want
- Pure managers or “security policy” people
- Candidates without deep, demonstrable technical work
- Tool-driven operators with no understanding of underlying systems
- Anyone unable to reason about systems without scanners
Hiring Expectations
- We will review past work:
- Code, audits, disclosures, research
- We expect clear evidence of:
- Technical depth
- Sound judgment
- Ethical alignment (white/grey hat boundaries must be clear)
What does a Rust developer in web3 do?
A Rust developer in the context of web3 is a programmer who uses the Rust programming language to build applications and tools for the decentralized web, also known as the web3 ecosystem
The specific responsibilities of a Rust developer in web3 may vary depending on the project or organization they are working for, but in general, they would be responsible for writing, testing, and maintaining Rust code that is used to build web3 applications
This could include things like creating smart contracts for decentralized finance (DeFi) applications, building tools for interacting with decentralized storage networks, or developing decentralized applications (dApps) for the web3 ecosystem.