OpenSea is hiring a

Web3 Senior Infrastructure Security Engineer

OpenSea is the first and largest marketplace for NFTs, offering a diverse range of unique and verifiable digital assets backed by blockchain. We're excited about building a platform that supports a brand new economy based on true digital ownership and are proud to be recognized as Y Combinator's #3 ranked top private company.

When hiring, we look for candidates who can thrive in our culture of trust, feedback, and rapid growth. We believe that diversity and inclusivity are essential to our success, and we provide equal employment opportunities regardless of background or identity. Our opportunities support remote, hybrid, or onsite work at our offices in New York City, San Francisco, or Silicon Valley, and we're dedicated to creating an environment where all employees can do their best work and contribute to the growth of our platform.

As we continue to expand our platform, we are seeking a highly experienced and motivated Senior Infrastructure Security Engineer to join our team. The ideal candidate will be responsible for leading the efforts to ensure the security and integrity of our infrastructure by identifying and mitigating potential threats, as well as maintaining and improving the overall security posture of our our edge perimeter and container environments.

What You’ll Do

• Deploy vulnerability management tools across CI/CD, and container infrastructure to detect vulnerabilities and security misconfigurations.
• Conduct advanced security assessments and threat modeling of our infrastructure, ensuring new systems are built secure by default.
• Leverage cloud best practices security tooling to enable secure application deployments.
• Continuously monitor, identify, and remediate vulnerabilities in our containers and infrastructure, while driving security improvements.
• Collaborate closely with cross-functional teams, including developers and product managers, to develop secure applications that adhere to industry best practices and regulatory requirements.
• Design and implement advanced security features, such as authentication, authorization, and encryption, to protect sensitive data and user privacy.
• Lead incident response efforts and conduct post-mortem analysis to identify root causes and implement measures to prevent future occurrences.

Desired Skills

• Minimum of 5 years of experience in a related role, such as: security, devops, site reliability engineering, or software engineering.
• Strong understanding of web security principles and best practices, including but not limited to OWASP top ten, PKI, and container security.
• Proficient in one or more programming languages, such as Python, Typescript or Golang.
• Familiarity with web application frameworks such as React, Next.js, or Django.
• Excellent problem-solving skills and the ability to adapt to new challenges in a fast-paced environment.

If you don't think you meet all of the criteria but still are interested in the job, please apply. Nobody checks every box, and we're looking for someone who is excited to join the team.

The base salary for this full-time position, which spans across multiple internal levels depending on qualifications, ranges between  $145,000 - $285,000 plus benefits & equity.

#LI-Remote