You have opted out of job matches in .
To undo this, go to the 'Skills and Interests' section of your preferences.
Shared by 
18 days ago
Requirements and responsibilities
About the roleWe’re growing our security team and looking for an engineer who can own a broad operational and technical scope—equally at home triaging an access request, running a security review, or building a custom testing framework. This role will report directly to the Head of Security, working closely to strengthen and scale our security posture across the organization.ResponsibilitiesIdentity and access management — provisioning, lifecycle operations, and monitoring for critical changesSecurity reviews across our product portfolio — threat modeling, code review, fuzzing, and functional testingDay-to-day bug bounty operations — triage, remediation tracking, and escalation of high-severity findingsAI security research and tooling — adversarial testing frameworks for agent controls, with a focus on reusable patternsSoftware supply chain monitoring — malicious package detection beyond standard CVE scanningExternal penetration test coordination — scoping, logistics, and post-engagement remediation trackingCompliance documentation and evidence gathering as requirements emergeWho You AreA software engineering background is essential — you’ve built production systems and that foundation shapes how you approach securityYou’ve since moved into product security and are fluent in the full lifecycle: threat modeling, secure design review, whitebox code review, and vulnerability testingSolid understanding of identity and access management concepts and toolingGenuine interest in AI security with the ability to build adversarial testing toolingA thoughtful approach to software supply chain risk beyond checkbox scanningStrong written communication — documentation is a real part of this jobComfortable with high ownership and working autonomously on a small teamExperience in Wev3, crypto, or defiQualificationsBachelor's degree in Computer Science, Computer Engineering, or a related technical field5+ years of professional experience, with a meaningful portion in software engineering before transitioning into securityProficiency in at least one systems or backend language (e.g. Rust preferred, Go, C++, Python) — you will be expected to write code, build tooling, and read production codebases as a routine part of this roleDemonstrated experience in product or application security — not solely infrastructure or compliance-focused rolesTrack record of building security tooling or automation from scratchExperience conducting or leading security reviews on production software systemsNice-to-HaveHands-on experience with mobile device management (MDM) platforms and endpoint policy enforcementFamiliarity with enterprise IAM systems and SSO — configuration, integration, and auditExperience with privileged access management (PAM) tooling and the operational patterns around itStrong Linux administration skills — comfortable at the command line, understanding of kernel-level security primitives, and experience hardening Linux environmentsExperience with multisig schemes — signing policy design, quorum configuration, or key management in a production contextFamiliarity with hardware security modules (HSMs) — integration, key lifecycle management, or operational useExposure to trusted execution environments (TEEs) — understanding of attestation, confidential compute, or secure enclave designBenefitsSalary based on experienceAbove-market total compensation and multiple forms of equity100% employer-paid health benefitsAll-expenses-paid team retreats and conferencesWeekly meal voucherAbout Jito LabsJito builds the Market Layer of Solana: the execution systems, capital markets, and incentive mechanisms that power real markets on-chain. Jito-Solana processes billions in daily transaction value, runs on the vast majority of Solana's active stake, and BAM is redefining how blocks get built. JitoSOL is the leading liquid staking token on the network.
Optionally, you can add more information later (benefits, pre-screening questions, etc.)