Web3 Security Engineer

A leading asset tokenization company with $1.5B+ in assets on-chain and EU regulatory approval is looking to strengthen its security posture as it scales. The project operates at the intersection of DeFi, institutional finance, and regulatory compliance, bringing real-world assets on-chain with full DeFi composability. The team is small, technical, and moves fast. They value people who build, take ownership, and care deeply about protecting what they're building.

We are looking for the company's first Security Engineer to own and build the entire security function from scratch.

This covers both web2 and web3: infrastructure hardening, monitoring, incident response, penetration testing, compliance, and on-chain security. This is a fully hands‑on, technical role.

Not a management position, not a strategy role.

You will be the person building the systems, writing the configurations, and responding to incidents.

Candidates whose recent experience is primarily strategic or team management will not be prioritized.

Europe or Americas (remote)

• Secure infrastructure across cloud environments (GCP/AWS/Cloudflare), networks, and endpoints
• Deploy monitoring and detection tools (SIEM, anomaly detection, alerting) for both infrastructure and on‑chain activity
• Lead security audits, manage access controls, secrets management, and incident response
• Ensure secure CI/CD pipelines, manage dependencies, and enforce supply chain security practices
• Define security policies, run internal training, and build a security‑first engineering culture
• Manage key and wallet security including HSMs, MPC, and custody solutions
• Conduct or coordinate penetration testing and red teaming activities
• Drive compliance efforts around SOC2, ISO27001, and GDPR
• Assess risk of external tools, vendors, and integrations
• Manage relationships with external auditors and bug bounty platforms

• Strong hands‑on experience in security engineering across infrastructure, cloud, or product security
• 2+ years working in infrastructure security, operations, or penetration testing within blockchain/web3 or high‑scale fintech
• Experience with threat modeling, vulnerability remediation, and incident response at the organizational level
• A generalist mindset and the ability to build a security function from the ground up
• Recognized credibility within the blockchain or web3 security community, with strong references from respected projects or companies

Ideal backgrounds include current or former Senior/Staff Security Engineers, Security Architects, or similar from high‑caliber crypto/web3 organizations with recent operational exposure.

• $150k to $250k USD base
• Equity component as part of the package
• Full ownership of a critical function at a company scaling past $1B TVL
• Remote‑first team with a culture of trust, speed, and high standards
• Direct access to engineering and leadership teams

We work with companies that care about building respectful, inclusive teams where people can grow, contribute, and feel supported. And if you have questions at any point, we are here to help you move through the process with confidence.