Security Engineer, Blockchain

Who We Are

Founded in 2012 by 3 expert hackers with no investment capital, Trail of Bits is the premier place for security experts to boldly advance security and address technology’s newest and most challenging risks. It has helped secure some of the world's most targeted organizations and devices. Our combination of novel research with practical solutions reduces the security risks that our clients face from emerging technologies. Our work helps drive the security industry and the public understanding of the technology underlying our world.

Cybersecurity preparedness is a moving target. Companies like ours are the tip of the spear in the fight against attackers. Our research-based and custom-engineering approach ensures that our client’s capabilities are at the forefront of what’s available. For companies and technologies that live and die by their security, a proactive, tailored approach is required to keep one step ahead of attackers.

Democratizing security information is essential. As part of our business, we provide ongoing informational support through blogs, whitepapers, newsletters, meetups, and open-source tools. The more the community understands security, the more they’ll understand why a company like ours is so unique and valuable.

Role

Trail of Bits seeks a Security Engineer, Blockchain, to join a growing team that is shaping the future of blockchain security. You will work alongside experienced engineers providing strategic advice to customers, helping them build more robust software and improve their project's maturity. Gaining exposure to custom tools like Slither, Echidna, and Medusa - among the first blockchain security tools used in practice on real code - you'll also have opportunities to learn and experiment with new tools between project engagements.

Reviewing blockchain applications for security vulnerabilities using both manual analysis and automated tools, you will focus primarily on smart contract security while gaining exposure to broader blockchain ecosystems and infrastructure components.

As you begin to develop your security research and consulting skills to their fullest extent, other practitioners at Trail of Bits and within the industry will benefit from your contributions as you develop expertise in this rapidly evolving discipline

Outside the United States, we can hire for this role internationally in select countries.

What You’ll Achieve

• Code Review: Collaborate with leading teams in the blockchain industry to review their smart contracts, off-chain components, and blockchain infrastructure under the guidance of senior engineers.
  
• Tool Development: Work with our existing blockchain security tools using modern software engineering practices. Contribute to automated analysis tool integration and custom rule development while building expertise in the blockchain security tooling ecosystem.
• Problem Solving: Learn to design and implement solutions for security vulnerabilities in blockchain systems including smart contracts, consensus mechanisms, and cross-chain asset transfer validation. Develop skills in identifying architectural risks and security issues in client implementations.
  
• Research and Development: Build foundational knowledge in blockchain security practices through hands-on experience with L1/L2 networks, finality assumptions, and emerging blockchain architectures. Stay current with threats across diverse ecosystems including rollups, bridges, and consensus protocols.

What You’ll Bring

• Blockchain Security Knowledge: Experience with Solidity security and understanding of the Ethereum Virtual Machine (EVM). Familiarity with common smart contract vulnerabilities, reentrancy attacks, and DeFi security patterns. Knowledge of other ecosystems such as Move, Solana, Cosmos, and TON are a plus.
  
• Systems & Blockchain Programming: Proficiency in at least one systems programming language (Go, Rust, C++, or similar) with understanding of blockchain development frameworks. Experience with blockchain node operations, RPC interfaces, or consensus protocol implementations.
  
• L1/L2 Ecosystem Knowledge: Understanding of Layer 1 and Layer 2 blockchain architectures, including rollup technologies (optimistic and ZK), state channels, or sidechains. Basic familiarity with consensus mechanisms like Proof of Stake, PBFT, or Tendermint, and blockchain finality concepts.
  
• Off-chain Component Analysis: Interest in reviewing blockchain infrastructure, including validator nodes, bridge contracts, oracle integrations, or cross-chain communication protocols. Understanding of deployment security and incident response integration.
  
• Security Analysis: Experience with security analysis, vulnerability assessment, or penetration testing. Familiarity with automated security tools, fuzzing techniques, or static analysis methodologies applied to blockchain systems.

Trail of Bits, Inc. participates in E-Verify, the US federal electronic employment eligibility verification program. Learn more.

When you apply, you'll be added to our newsletter so you can stay updated on company news and opportunities. You can opt out anytime.

Benefits

Benefits, Perks & Wellness

Trail of Bits is our people, not a place. With over 100+ employees working from every time zone across the globe, our remote-first culture is built on autonomy and trust (and backed by smile-worthy benefits) for full-time employees:

Empowered Living:

• Competitive salary complemented by performance-based bonuses.
• Fully company-paid insurance packages, including health, dental, vision, disability, and life.
• A solid 401(k) plan with a 5% match of your base salary.
• 20 days of paid vacation with flexibility for more, adhering to jurisdictional regulations.

Nurturing New Beginnings:

• 4 months of parental leave to cherish the arrival of new family members.
• Our team is global and remote-first. However, if you are interested in moving to NYC, we offer $10,000 in relocation assistance to support your transition.

Work & Life Enrichment:

• $1,000 Working-from-Home stipend to create a comfortable and productive home office.
• Annual $750 Learning & Development stipend for continuous personal and professional growth.
• Company-sponsored all-team celebrations, including travel and accommodation, to foster community and recognize achievements.

Community Impact:

• Philanthropic contribution matching up to $2,000 annually.

Dedication to Diversity, Equity, Inclusion & Belonging (DEIB)

Trail of Bits is a community of innovators, risk-takers, and trailblazers who celebrate individual differences and recognize that unique perspectives make us stronger, smarter, and more successful. We actively seeks applicants who can bring a variety of experiences, perspectives, and backgrounds to the team. We provide equal employment opportunities to all employees and applicants for employment without regard to race, color, ancestry, national origin, gender, sex, pregnancy, pregnancy-related condition, sexual orientation, marital status, religion, age, disability, qualified handicap, gender identity, results of genetic testing, military status, veteran status, or any other characteristic protected by applicable law. Our team values diversity in experience and backgrounds—we do our best work when we create space for different voices and perspectives. Whatever unique experiences or skill sets you bring, we look forward to learning from each other.