Product Security Engineer

Job Summary

To ensure security is embedded in the product development lifecycle, the full-time remote Product Security Engineer will conduct end-to-end security assessments, identify vulnerabilities through hands-on testing, and collaborate with engineering teams to implement proactive security measures.

Key responsibilities

• Conduct end-to-end security assessments of blockchain-based systems, including cryptographic design and smart contract implementation
• Perform hands-on vulnerability discovery and develop proof-of-concept exploits for Hedera-native services and cross-chain components
• Partner with engineering teams to enforce security gates and translate cryptographic risks into prioritized remediation efforts

Required qualifications

• Hands-on experience with vulnerability discovery and security testing in blockchain protocols and smart contracts
• Strong background in threat modeling and security architecture review for distributed cryptographic systems
• Deep knowledge of applied cryptography and experience with complex trust assumptions in cryptographic systems
• Proficiency in security testing tooling, including static analysis, dynamic analysis, and fuzzing
• Ability to read and audit cryptographic code in Rust and/or Java