Smart Contract Security Engineer
2 days ago
Responsibilities
Perform a review analysis on newly disclosed vulnerabilities for smart contracts and summarize the root cause behind the exploits ..
Responsibilities
- Perform a review analysis on newly disclosed vulnerabilities for smart contracts and summarize the root cause behind the exploits for early detection in the future.
- Conduct security audits on both smart contracts and blockchains, and write high-quality audit reports.
- Develop automated scanning and monitoring tools for smart contracts and blockchains.
- Utilize scanning tools to detect vulnerabilities in online contracts and promptly issue risk warnings.
- Conduct post-mortem analyses on various hacking incidents, examining the causes, processes, and basic fund tracing.
- Proactively identify on-chain risks, monitor and model emerging on-chain attack vector trends, and possess a solid understanding of on-chain security risks such as fraud and phishing.
- Demonstrate a strong understanding of EVM-compatible blockchains and layer 2 solutions, and be familiar with DeFi design patterns.
Requirements
- Currently enrolled or holding a bachelor's degree (or higher) in Computer Science or a related field.
- Proficient in Smart Contract programming languages, such as Solidity, among others.
- Basic understanding of common Smart Contract security vulnerabilities.
- Basic understanding of blockchain and smart contract principles, experienced with reading Blockchain explorers. Well versed with the different types of hacks on smart contracts, and its common attack vectors.
- Well versed with the different types of scams such as Wallet Drainers in the space and how to identify them.
- Familiar with smart contract development testing, transaction analysis, and other tools.
- Experienced in using VSCode, Git, or other version control applications.
- Proficient in Python or another object-oriented programming language.
- Fundamental knowledge of code analysis and program debugging.
Additional beneficial skills
- Basic knowledge of fuzz testing or static analysis.
- Basic knowledge of detection, exploitation, and prevention of security vulnerabilities.
- Experience in smart contracts development (e.g Foundry, HardHat, etc).
- Experience in CTF or bug bounty programs (e.g. Hack The Box, WebGoat, etc).
- Experience in Front-end development (React, Javascript, Typescript).
- Experience in data mining and data analysis of on-chain data.
Official account of Jobstore.