Skip to content
TempoTempoUnited States

Security Engineer

Security engineer on internal Red Team stress-testing blockchain infrastructure by hunting vulnerabilities, building Rust fuzzers, simulating economic attacks, and dissecting EVM internals. Requires Rust fluency, EVM expertise, and proven offensive security track record like CTFs or bug bounties.

Salary not listed
RemoteSecurity Engineering

About the role

Responsibilities

  • Proactively hunt for vulnerabilities in the Tempo protocol, consensus engine, and bridge architecture, treating our mainnet like a continuous CTF challenge.
  • Design and implement security tooling and automation in liaison with the Foundry team to catch logic errors and edge cases.
  • Partner with engineering teams to review critical architecture across our codebase.
  • Analyze incentives and game-theoretic risks within the protocol, such as MEV and staking dynamics, to prevent economic exploits.

Qualifications

  • Fluency in reading and writing production-level code in systems languages, with a strong preference for Rust.
  • Deep expertise in EVM internals, including intimate knowledge of opcodes, storage slots, gas metering, and precompiles.
  • Proven track record of offensive security, such as high rankings in CTFs (e.g., Paradigm CTF), high-severity bug bounty submissions, or published research.
  • Experience building custom security automation or tooling rather than relying solely on off-the-shelf scanners.
  • Bleeding-edge knowledge of the latest blockchain security research, including recent hacks and how these could have been mitigated.

Skills

RustEvmFuzzingCtfBug BountiesBlockchain SecurityMevConsensusSecurity ToolingGame Theory
Forus

Security Program Manager

ForusNew York, NY

Own end-to-end compliance programs (SOC 2, HIPAA, HITRUST), build customer trust function, implement automation, and partner with engineering on controls for a healthcare AI platform handling protected health information.

Salary not listed
On-site4+ YOESecurity Engineering
Anthropic

Safeguards Enforcement Analyst, Account Takeover & Credential Abuse

AnthropicSan Francisco, CA +2

Safeguards Enforcement Analyst focused on account takeover and credential abuse. Investigate compromise incidents, design remediation workflows, partner with engineering on detection, enforce AI usage policies, and develop scalable enforcement programs for platform safety.

245k – 285k/yr
HybridSecurity Engineering
Zocdoc

Application Security Engineer

ZocdocUnited States

Application Security Engineer partnering with engineering teams to embed security into the SDLC, triage SAST/SCA findings, provide remediation guidance on OWASP issues, maintain security docs/playbooks, support governance/audits, and integrate GenAI tools while building AI governance guardrails.

100k – 140k/yr
RemoteSecurity Engineering
Cloudflare

Detection & Mitigation Engineer

CloudflareUnited States

Security Detections Engineer identifying attacker TTPs, building real-time detections, and mitigating threats/abuse across Cloudflare's global platform using data analysis, SQL, scripting, and threat intelligence. Requires strong analytical and communication skills.

Salary not listed
HybridSecurity Engineering
Mintlify

Security & Compliance Operations Manager

MintlifySan Francisco, CA

Own and run Mintlify's end-to-end security and compliance programs (SOC 2, ISO 27001/42001, GDPR, Microsoft SSPA) as the first dedicated GRC Program Manager. Administer Drata, manage audits/vendors/evidence, handle customer-facing compliance, and coordinate with engineering.

120k – 180k/yr
On-site3+ YOESecurity Engineering