Mysten Labs believes that decentralized and open protocols are the bedrock of the internet of value. This is why at Mysten Labs, we are creating foundational infrastructure to accelerate the adoption of decentralized protocols based on blockchain technologies.
Security engineers own the operational and software security of the Sui blockchain, wallet, Move language, and other Mysten systems.
Security engineers support and work closely with the engineers working on the sensitive components of these systems. In addition, they are the key points of contact for audit engagements and bug bounty reports.
We are hiring security engineers now as we expand the ecosystem post-mainnet. We have a strong team in protocol security, but we need experts in operational and software security who can help us navigate the challenges of running an open and decentralized system with valuable assets inside.
Responsibilities
Design and implement systems that enhance the security and privacy of Mysten’s products and infrastructure, through, for example, developing static and dynamic analysis tools and integration of tools into build and test systems.
Conduct design and code reviews, improvements that enhance the security of Mysten products and infrastructure
Use your knowledge of technical systems, such as key management systems, to respond to security/privacy incidents and other severe issues.
Drive effort to fix vulnerabilities and regressions across the organization through communication, technical solutions, including fixing the issue in production when applicable, and automation efficiency.
Work with cross functional teams to prioritize security engineering efforts
Recommend and help scale adoption of processes to enhance security of Mysten products and infrastructure.
Provide guidance and technical direction to full time employees or contingent workers to ensure that vulnerabilities are remediated properly.
Minimum Qualifications
Bachelor's degree in Computer Science, Computer Engineering, relevant technical field, or equivalent practical experience
Experience with common security vulnerabilities on web apps
Familiarity with device, app, and web security concepts
Experience programming in Python / interest or experience in Rust
Linux experience
Ability to evaluate and verify security systems via manual and automated testing, such as fuzzing
8+ years of security industry experience
Preferred Qualifications
Security patents, technical security conference presentations, relevant CVEs / publications or other indicators of industry grade security expertise
Static and Dynamic Analysis experience
Vulnerability Management experience
Experience authoring and managing key management systems
Python and Shell script familiarity
Strong knowledge of blockchain systems and security
Our team is remote first and we are hiring across the world. Here at Mysten Labs, you’ll be joining a world-class team with tremendous growth potential as we bring the next billion users to web3. We raised a $300M Series B round from top Silicon Valley led venture funds like Jump Crypto, Andreessen Horowitz (a16z), Binance Labs, Redpoint, Lightspeed, Coinbase Ventures, Electric Capital, Standard Crypto, NFX, Slow Ventures, Scribble Ventures, Samsung Next, Lux Capital, among other investment firms and strategic partners. Come join us and build the future of web3!