• Full Time
  • Remote

Want to be a part of the fastest-growing blockchain company? Ava Labs makes it simple to launch applications using Avalanche, a smart contracts platform with 800k+ monthly active users. Avalanche is the fastest blockchain, measured by time to finality, and one of the fastest-growing in crypto – with hundreds of dapps and $12B+ in total economic value locked.

Founded by the creators of Avalanche, Ava Labs strives to digitize every asset in the world. In addition to building Avalanche and other tools to support the ecosystem, we offer expertise to ensure that all individuals and organizations can seamlessly use Avalanche and its vibrant app ecosystem. Join us as we empower people to easily and freely digitize all the world’s assets on one open, programmable blockchain platform.

In a perfect world, there would be an application security engineer for each department.  We are looking for an Application Security Engineer to focus on our Frontend and to be that security expert!

What You Will Do

  • Work with frontend developers and product owners to ensure secure design and development of applications
  • Be the NodeJS/Javascript/Frontend technology security expert to the team and effectively communicate information to technical and non-technical team members
  • Recognize security needs and recommend suitable technologies and controls
  • Design and build security tools integrated with the CI/CD pipeline
  • Actively provide technical security direction to frontend developers of the team
  • Respond to security alerts

What You Will Bring

  • Since frontend development is a fast-moving field, the successful candidate must be able to keep pace with developments and make risk assessments of new tools and security recommendations for their use
  • 5+ years of relevant experience
  • A strong foundation and in-depth technical knowledge of application security, with an emphasis on front-end, web application, and mobile security
  • Know the OWASP Top 10 by heart, and are eager to discover their equivalent in Web 3.0
  • Experience in threat modeling system designs and implementation—how they scale, how they should fit together, and how they’re likely to break
  • Experience in design reviews and conducting code reviews with an eye for security vulnerabilities
  • Experience in triaging findings from security tools, bug bounty programs, and the external research community
  • Proficient in one or more programming languages (Node.js/Javascript, Golang experience also looked upon favorably)
  • Ability to analyze and solve complex problems

Nice to Have

  • OSCP gets our attention, but is not required
  • Security experience in Web3.0
  • Solidity / smart contract experience would be a big plus, as Web 3.0 Javascript interacts heavily with smart contracts (What’s your Ethernaut score?)
  • Typescript

#LI-Remote #LI-TW1


We’re a global, world-class team of experts in computer science, economics, finance, marketing, and law with offices in New York City and Miami. We’re highly passionate about Web3 and redefining the way people build and use finance and decentralized applications of all kinds. The company received early-stage funding from Andreessen Horowitz, Initialized Capital, and Polychain Capital, with angel investments from Balaji Srinivasan and Naval Ravikant.

Ava Labs is committed to diversity in the workplace and we’re proud to be an Equal Opportunity Employer. We do not hire on basis of race, color, religion, creed, gender, national origin, citizenship, age, disability, veteran status, marital status, pregnancy, parental status, sex, gender expression or identity, sexual orientation, or any other basis protected by local, state or federal law. All employment is decided on the basis of qualifications, merit, and business need.

Pour postuler à cette offre d’emploi veuillez visiter boards.greenhouse.io.