Security Software Engineer – Blockchain / Web3 – APAC

Job Description

Shardeum is pioneering the development of a layer 1, EVM-based, linearly scalable smart contract platform. With a steadfast commitment to maintaining low gas fees indefinitely, Shardeum prioritizes genuine decentralization and robust security through dynamic state sharding. Our vision is to facilitate the mass adoption of cryptocurrency, aiming to onboard over a billion individuals to the crypto revolution while fostering accessibility to decentralization.

Supported by prominent Venture Capitalists in the blockchain sphere, Shardeum is poised to emerge as one of the most widely utilized and recognized smart contract platforms in the history of blockchain technology.

We invite you to explore our website, Litepaper, Discord, and YouTube channel to delve deeper into our project. You can also experience our validator software and participate in our Testnet to gain hands-on insights.

We encourage applications from individuals of diverse backgrounds and experience levels. At Shardeum, we value talent and potential above all, fostering an inclusive culture where everyone can thrive.

About the Role:

As a member of the Security Engineering team at Shardeum, you will play a pivotal role in ensuring the safe and secure deployment of the Shardeum Mainnet. Your responsibilities will encompass advancing the development of the smart contract platform, consensus layer, and protocol layer. We prioritize the creation of scalable, performant, and reliable software, critical for facilitating the Shardeum network’s operation by thousands of node operators.

We are seeking highly talented and innovative individuals to join our team. If you are passionate about tackling complex computer science challenges, possess a meticulous approach to building secure software, and demonstrate unwavering commitment to project completion, we encourage you to apply. You will collaborate with equally skilled and inventive colleagues, collectively striving to develop groundbreaking software with the potential to revolutionize the world.

Key Responsibilities:

  • Conduct proactive assessments covering infrastructure, secure architecture, data security, identity, and access management.
  • Identify and address potential security flaws in code, designs, and processes, implementing strategies to resolve and mitigate exposed issues.
  • Perform security audits on NodeJS and TypeScript code, addressing potential vulnerabilities.
  • Assist in setting organizational security priorities and evaluating application architectures for security concerns.
  • Develop on-chain security strategies, conduct security assessments, and threat modeling of blockchain protocols and smart contracts.
  • Incorporate security-related activities into the software engineering process, including threat modeling and secure coding practices.
  • Design and develop detection capabilities to identify known and unknown hacks in Web3 environments.
  • Triage vulnerability reports and collaborate with the engineering team to implement fixes.
  • Prioritize and drive the resolution of security issues, vulnerabilities, and risks.
  • Develop or utilize security-related tools and analysis techniques to detect potential vulnerabilities in code.
  • Establish and maintain strategies for detecting on-chain attacks, facilitating real-time observation and reporting of security events.

Qualifications:

  • Bachelor’s or Master’s degree in Computer Science or related fields, with experience in security research.
  • Proficiency in performing security architecture and design reviews.
  • Experience with application fuzzing and auditing.
  • Familiarity with Web3 security research is advantageous.
  • Excellent communication skills.
  • Knowledge of common vulnerabilities across different software types and programming languages, including testing, exploitation, and mitigation.
  • Familiarity with vulnerability classification frameworks such as OWASP Top 10.
  • Ability to conduct threat modeling to assess system design and identify exploitable flaws.

Preferred Qualifications:

  • Experience with concurrency, parallelism, and distributed systems.
  • Familiarity with Shardeum/Shardus open-source repositories.
  • Experience with consensus protocols and other blockchain technologies.
  • Proficiency in Node.js, TypeScript, or languages like C, C++, Rust, or Go.
  • Experience in writing smart contracts on a blockchain and running nodes in a blockchain network.
  • Knowledge of cryptography, networks, and operating systems.
  • Academic excellence, participation in hackathons, competitive coding, contributions to open-source projects, technical publications or presentations, and familiarity with foundational blockchain documents like the Bitcoin and Ethereum whitepapers are all advantageous.

Interview Process:

Our interview process typically spans under two weeks and comprises the following stages:

  1. Internal Recruiter Call (30 to 45 minutes)
  2. Meeting with the Hiring Manager (1 hour)
  3. Technical Tests (1-3 sessions, each lasting 1-2 hours)
  4. Culture & Values Interview (1 hour)

At Shardeum, we are architects of Web 3.0, embarking on an exhilarating journey that promises both challenges and excitement.

About the Founders:

  • Nischal Shetty: Founder of WazirX, India’s largest crypto exchange with over 10 million users and $45 billion+ trading volume. Nischal is a blockchain evangelist and a prominent figure in the Indian crypto community, previously featured in Forbes India’s 30 under 30 list.
  • Omar Syed: With over 30 years of experience, Omar is a seasoned blockchain architect who has contributed to the development of fault-tolerant, distributed systems for organizations like NASA, Yahoo, and Zynga. He holds a B.S. and M.S. in Artificial Intelligence from Case Western Reserve University.