Security Engineer

The Starknet Foundation is a foundation organized to achieve Starknet's vision of a thriving, decentralized, and permissionless Ethereum Layer 2 Validity Rollup. We're on the lookout for a skilled Security Engineer to join our team, playing a crucial role in safeguarding our digital assets and technology infrastructure against cyber threats. The Security Engineer will play a pivotal role in securing the Starknet ecosystem. This role requires a deep understanding of blockchain architecture, smart contract security, and the unique cybersecurity challenges in the crypto space. The successful candidate will be instrumental in designing, implementing, and maintaining security measures to protect against evolving cyber threats in the crypto landscape.

Responsibilities:

• Design, implement, and maintain security measures and controls to protect digital assets and the information systems of the Starknet Foundation.
• Plan and execute security audits for core Starknet ecosystem components and dApps, reporting findings and recommending enhancements.
• Stay updated on blockchain security threats, trends, and technologies, applying this knowledge to strengthen our security posture.
• Develop incident response plans for security breaches related to the Starknet ecosystem and lead the response and recovery efforts in case of actual incidents.
• Educate team members and the ecosystem on security principles, best practices, and emerging threats.

Requirements:

• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field, strongly emphasizing blockchain technology.
• In-depth understanding of blockchain architecture, smart contracts, consensus algorithms, and cryptographic protocols.
• Experience with security auditing and penetration testing of blockchain networks and smart contracts.
• Proven experience in security engineering, preferably with a focus on blockchain or cryptocurrency technologies.
• Experience programming with Solidity, with focus on secure coding best practices; experience working with Cairo is a big plus.
• Strong analytical and problem-solving skills, with the ability to think creatively to mitigate security risks.
• Excellent communication skills, capable of conveying complex security concepts to non-technical stakeholders.
• Certifications related to cybersecurity (e.g., CISSP, OSCP) or blockchain technology (e.g., CBSP - Certified Blockchain Security Professional) are a plus.
• Strong preference for candidates based in Lisbon or London.