Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Hashgraph

Product Security Engineer

Hashgraph

Product Security Engineer ensuring security in the product development lifecycle at Hedera, a leading blockchain company.

Posted 5/29/2026full-timeRemote • 🇮🇳 IndiaMid-LevelSeniorWebsite

Tech Stack

Tools & technologies
JavaOracleRustWeb3

About the role

Key responsibilities & impact
  • Conduct end-to-end security assessments of blockchain-based systems, from cryptographic primitive design and protocol architecture through smart contract implementation and deployed infrastructure.
  • Find real vulnerabilities through hands-on review, adversarial testing, and proof-of-concept exploit development, not just automated scanning.
  • Design adversarial test cases and proof-of-concept exploits for Hedera-native services, EVM-compatible contracts, cross-chain bridges, and consensus-layer components.
  • Own threat modeling and security architecture reviews across product phases.
  • Define and enforce security gates before new components reach production.
  • Partner directly with engineering teams to translate cryptographic and protocol-level risks into concrete, prioritized remediation work.
  • Build and improve security tooling, fuzzing infrastructure, and CI/CD security automation to scale security coverage without scaling headcount.
  • Track emerging blockchain and web3 attack patterns, map them to the internal codebase, and drive proactive mitigation before threats materialize.

Requirements

What you’ll need
  • Hands-on vulnerability discovery and security testing across blockchain protocols, smart contracts, nodes, and APIs.
  • A track record of catching real bugs, not just running automated scans.
  • Strong threat modeling and security architecture review experience applied to distributed cryptographic systems.
  • Experience assessing cross-chain protocols, threshold signature schemes, or other cryptographic systems with complex trust assumptions.
  • Deep working knowledge of applied cryptography, including BLS signatures, pairing-based schemes, polynomial commitments, and Fiat-Shamir constructions.
  • Ability to reason about cryptographic failure modes and how they show up in production systems.
  • Direct experience auditing or breaking a cross-chain bridge.
  • Ability to reason through trust model tradeoffs, including state proof, multisig, and oracle attestation models, and what each means for the attack surface.
  • Blockchain security and secure coding practices across EVM-compatible and non-EVM chains.
  • Security testing tooling, including static analysis, dynamic analysis, and fuzzing.
  • Experience developing custom fuzzing harnesses or security test infrastructure.
  • Ability to read and audit Rust and/or Java cryptographic code.
  • Understanding of memory safety, constant-time correctness, secret handling, and security risks at JNI boundaries.

Benefits

Comp & perks
  • Health insurance
  • 401(k) matching
  • Flexible work hours
  • Paid time off
  • Remote work options

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
vulnerability discoverysecurity testingthreat modelingsecurity architecture reviewapplied cryptographyBLS signaturespairing-based schemespolynomial commitmentsFiat-Shamir constructionssecure coding practices
Soft Skills
problem-solvingcollaborationcommunicationanalytical thinkingattention to detail