Description

About Swirlds Labs:

We are a fast-growing company built around a revolutionary technology — the hashgraph consensus algorithm. Hedera Hashgraph is well-suited to become the world’s first mass-adopted distributed public ledger because it is blazing fast, highly secure, and ensures fairness. We are on a mission to create a trusted and empowered digital future for everyone; a cyberspace where you work, play, buy, sell, create, and engage socially; where you have safety and privacy in your digital communities; where you feel confident when interacting with others; where you own and control your information. Join us and say, “Hello future.”

You may find yourself doing all of the following:

  • Conducting thorough security reviews of the company's products throughout the development lifecycle, including the design, implementation, and release phases
  • Collaborating with cross-functional teams to identify security vulnerabilities and recommend mitigation strategies
  • Developing and maintaining security testing methodologies and procedures
  • Implementing and managing automated security testing tools and processes
  • Providing guidance and support to development teams on secure coding practices and security best practices
  • Staying current with industry trends and emerging threats to inform and enhance product security measures
  • Assisting in incident response activities related to product security incidents
  • Participating in security awareness training programs for internal stakeholders

Qualification Requirements:

  • Minimum 6 years of experience in application or product security, including 2-3 years of experience in software development or related field
  • Familiarity with common security vulnerabilities and attack vectors
  • Hands-on experience with security testing tools such as static analysis, dynamic analysis, and fuzzing tools
  • Strong understanding of secure coding practices and principles (mainly Java and Solidity)

Other skills that are great to bring with you but that we can help you develop:

  • Relevant certifications (e.g., OSCP, OSEP, OSWA, OSWE)
  • Experience in Bug bounty, Security Research, CVE publications, Red teaming, and attack surface management
  • Experience with cloud environments (e.g., GCP, AWS)
  • Understanding of common programming languages and scripting languages, such as Python, PowerShell, or Bash
  • Experience with containerization and orchestration technologies, such as Docker and Kubernetes, and their associated security best practices
  • Knowledge about web3 / Blockchain / Crypto


Please mention the word **EMBOLDEN** and tag RNTQuMjQ1LjIwMy41Mw== when applying to show you read the job post completely (#RNTQuMjQ1LjIwMy41Mw==). This is a beta feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.