Apply on Employer Site

CertiK · 2 days ago

Sr. Security Engineer (Penetration Testing)

New York, NY

Full-time

Onsite

Mid, Senior Level

$100K/yr - $180K/yr

4+ years exp

CertiK is a pioneer in blockchain security, leveraging best-in-class AI technology to protect and monitor blockchain protocols and smart contracts. The primary responsibility of this role is for CertiK’s security-related services, including security consulting, security reviews, and penetration testing of applications in the blockchain space.

BlockchainCyber SecuritySoftwareWeb3

H1B Sponsor Likely

Responsibilities

Perform security assessments on web, mobile, thick client applications, and browser extensions

Conduct external and internal network penetration tests

Perform security source code reviews

Perform cloud security reviews

Develop comprehensive pentest reports for both technical and non-technical audiences

Research and develop innovative techniques, tools, and methodologies for pentesting applications in the blockchain space

Contribute to the community by developing tools, presentations, and blog posts

Qualification

Application SecurityPenetration TestingSource Code ReviewCryptographyJavaScriptTypeScriptMobile Application TestingCloud SecurityPythonBashBlockchain KnowledgeResearchDevelopmentCommunication Skills

Required

Passionate about cryptocurrency, DeFi, and blockchain, with a willingness to learn Web3 technologies such as smart contracts

Minimum of 4 years of experience in application security and penetration testing

Experienced in source code review for different languages, with a strong understanding of JavaScript and TypeScript

Experienced in mobile application penetration testing

Familiar with cloud platforms and their security risks, such as AWS, Azure, and GCP

Experience in programming with scripting languages such as Python and Bash

Solid understanding of cryptography

BS/MS/PhD in Computer Science or Information Security

Strong spoken and written communication skills

Preferred

Experienced in pentesting Web3 applications such as crypto exchanges, wallets, Dapps, and key custodian solutions

Experienced in smart contract security audits

Familiar with browser extension architecture and security risks

Actively participate in the blockchain security community

OSCP, OSWE, OSCE, GWAPT, or comparable certification

Participated in bug bounty programs and audit contests

Published security-related blog posts and spoken at security conferences and/or local meetups

Benefits

Medical, vision, and dental insurance

401(k) plan with company matching

Life and accidental death and dismemberment insurance

HSA (with high deductible plan)

FSA

Flexible paid time off

Holidays

Variable commission program for business development sales roles

Company

CertiK

CertiK leverages formal verification technology to mathematically ensure security in systems software.

Founded in 2018

New York, New York, USA

201-500 employees

https://www.certik.com/

H1B Sponsorship

CertiK has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2020 (6)

Funding

Current Stage

Growth Stage

Total Funding

$300.2M

Key Investors

Sequoia CapitalCoatueIDG Capital

2022-04-22Series B· $60M

2022-03-29Series B· $88M

2021-12-01Series B· $80M

Leadership Team

Ronghui Gu

Co-Founder

Jason Nieh

Chief Scientist

Recent News

Crowdfund Insider

Blockchain Security Firm CertiK Examines Crypto and Privacy Tech Advancements Heading into 2026

2026-01-07

GlobeNewswire

CertiK and YZi Labs Form Strategic Partnership, Providing $1 Million Audit Grants for EASY Residency Participants

2026-01-06

lsvp.com

Lightspeed Venture Partners portfolio - CertiK

2025-12-31

Company data provided by crunchbase