Security Engineer

Security Engineer

Full Time

Remote, Canada, Austria, Germany, Switzerland, UK, USA

About Informal

Informal Systems is committed to making modern financial and Internet infrastructure more decentralized, secure and accessible to everyone. We develop critical blockchain infrastructure ourselves (Informal is a maintainer of Cosmos Hub, Comet and IBC) and we also help other organizations design secure and efficient blockchain systems.

The Security Services team is dedicated to helping organizations design secure and efficient blockchain systems, encompassing a wide array of applications from decentralized exchanges (DEXs), smart contracts, and decentralized finance (DeFi) platforms to interchain connection protocols that enable seamless communication and interoperability between diverse blockchain networks. Informal systems approaches combine manual code inspection with automated software analysis using our in-house formal verification and testing tools.

Informal Systems is a remote-first company with a presence in North America and Europe. We are structured as a worker’s cooperative, where important corporate actions are subject to one-person-one-vote democratic control by the member-employees.

About the Role

We are seeking a skilled and experienced Security Engineer to join our Security team. In this role, you will work at the cutting edge of blockchain security, utilizing advanced techniques like fuzzing and formal verification, while working with the most advanced projects in the ecosystem. As a member of our team, you will engage directly with clients, providing expert advice and guidance on blockchain security best practices.

What your primary responsibilities will be:

1. Collaborate closely with the security architects and senior engineers to develop and implement a comprehensive threat analysis.
2. Conduct security reviews of blockchain projects in the Cosmos ecosystem.
3. Utilize various security testing methods including fuzzing, testing, and formal verification tools.
4. Perform manual code reviews to identify potential vulnerabilities.
5. Contribute to the preparation of audit reports and client presentations.
6. Participate in client meetings to discuss findings and security recommendations.
7. Assist in the development and improvement of internal security tools.
8. Collaborate with team members on complex security issues and learn from their expertise.
9. Help maintain and expand the company's knowledge base with insights from audits and research.
10. Actively pursue professional development in blockchain security, staying current with new trends and attack vectors.
11. Support senior team members in research activities and tool development projects.
12. Participate in internal training sessions and contribute to the team's collective knowledge.

What we look for in a successful Security Engineer:

1. Educational background in Computer Science, Information Security, or equivalent experience.
2. At least 2 years of software engineering experience related to complex distributed systems, either on the design, implementation or the testing side.
3. Strong programming skills; experience with Golang or Rust is a plus.
4. Familiarity with modern infrastructure tools and testing approaches.
5. Familiarity with app-chain blockchain frameworks such as Cosmos SDK, CosmWasm, Substrate, Solana SDK is a plus.
6. Excellent analytical and problem-solving abilities, with a keen eye for detail.
7. Effective communication skills, both written and verbal, to clearly convey complex security concepts to technical and non-technical stakeholders.
8. Nice to have:

• Previous auditing experience.
• Experience working with Fuzzing tools in Rust and/or Go.
• Demonstrated experience with building, testing, and/or auditing complex software.

Some of our benefits include:

1. A unique, caring and friendly culture.
2. 25 days (5 weeks) of paid vacation annually, plus 3 Spiritual Days.
3. Company closure from December 25th to January 1.
4. Annual Lifestyle benefits (reimbursements for gym memberships, fitness equipment, etc).
5. A remote-first, flexible work environment.
6. A home-office stipend to set you up for success.
7. Annual company retreats.
8. Paid parental leave.
9. ….. and many more!

We are an equal-opportunity employer and value diversity in our organization. We are committed to equal employment opportunities and encourage applications from people of all race, religion, colour, national origin, gender identity, sexual orientation, age, marital status, veteran status, or disability status.