Senior Security Engineer Protocol

About The Role:

Pagoda is shepherding a future where NEAR becomes the blockchain operating system. We believe that re-inventing how software is made and distributed is our greatest opportunity to open economic access to those who are not fully integrated into the global economy. Our products empower people to find opportunity, invent new experiences, and collaborate. Let's build an Open Web world. A world where people control their assets, data, and power of governance.

Pagoda’s growing security team is looking for a Security Engineer to partner with our Protocol team. This position will be primarily responsible for identifying, analyzing, solutioning, and accounting for security as it pertains to the NEAR Blockchain; embedded within Pagoda’s Protocol team and reporting to Pagoda’s CISO.

As a Security Engineer you will work closely with the Protocol team to make sure that NEAR Protocol is secure, robust, and performant. You will focus on strengthening the security of the protocol through a combination of architectural improvements, automated testing, and manual auditing of the codebase. You will also work closely with protocol engineers to ensure the security of new features and other changes to the existing protocol.

What You'll Be Doing:

• Identify ways to systematically improve the security of the protocol without compromising its performance and scalability
• Set up testing infrastructure to ensure the security of the protocol
• Security audit of the protocol implementation, including consensus, sharding, state transition, etc.
• Handle security vulnerability reports that are related to the protocol
• Analyze risk and maintain a registry and remediation/improvement roadmap as it pertains to the protocol

What We're Looking For:

• Development or software engineering experience and a deep passion for informations security
• Strong security engineering background and programming experience
• Experience with a modern system programming language (eg C++, Rust)
• Demonstrated experience evaluating code for vulnerabilities and weaknesses
• Familiarity with low-level programming, operating systems, and virtual machines. Experience with WebAssembly is a plus
• Practical experience of security analysis tools such as: fuzzing, SAST scanners, linters etc.
• Experience in securing large scale distributed systems
• Strong communication skills and ability to work with remote teams
• Results & goal orientated

We'd Love If You Have:

• A passion for security and Web3
• Experience in a start-up environment
• Experience with software verification technologies, including model checking and formal verification

Here’s What Our Interview Process Looks Like:

Depending on calendar availability, from the first stage to the final stage, we do our best to keep the entire process to under three weeks. Our interviews take place via Zoom and typically consists of the following stages:

• Internal Recruiter Call (30 minutes)
• Meet with the Hiring Manager (30-45 minutes)
• Technical Interviews (3 x 60 minutes)
• Pagoda Interview (30 to 45 minutes)

Please let us know if you require any special requirements for your interview and we’ll do our best to accommodate.

Ideal Location For This Role

This is a fully remote role, so that your timezone matches or overlaps with our leadership for this role, you’ll ideally be located in Remote - US, North America or, Europe.