Sr. Smart Contract Auditor

ABOUT THE ROLE

As we enter our next stage of growth, we are looking for an experienced Smart Contracts Auditor with a strong background in smart contract security auditing and hands-on experience in application security engineering or security research. This role combines advanced auditing skills with deep security expertise to ensure the robustness of blockchain applications and smart contracts. You will collaborate closely with internal development teams and members of the ecosystem to develop new capabilities to improve the security of the public p2p network, its users, and the company's infrastructure.

You will work alongside blockchain gurus and smart open-minded ‘Rooties’ across cross-functional teams, working in web3 and on the cutting edge of technology.

KEY RESPONSIBILITIES

• Comprehensive Security Audits: Lead end-to-end security audits of decentralized applications, providing detailed assessments, attack vector analysis, and remediation guidance.
• Source Code and Architecture Reviews: Perform source code audits, PR security reviews, threat modeling, and architectural security reviews in alignment with organization needs.
• Advanced Smart Contract Testing: Conduct advanced smart contract testing, including fuzz testing, invariant testing and manual code reviews to identify vulnerabilities.
• Blockchain Threat Research: Conducting research and analyzing emerging blockchain threats, vulnerabilities and attack techniques.
• Mentorship and Security Collaboration: Mentor and collaborate with internal engineering teams to improve security practices.

WHAT YOU BRING

• 7+ years of combined experience in Application Security Engineering, Security Research, or related security domains.
• 2+ years of direct experience auditing smart contracts with a focus on security.
• Proven ability to identify, analyze, and remediate security vulnerabilities in smart contracts and decentralized applications. Providing links to public reports or projects demonstrating previous audit work is a plus.
• Demonstrable expertise in performing:
• Source code audits (links to public reports or projects are a strong plus).
• Threat modeling and architectural reviews.
• Vulnerability research in blockchain or application security domains.
• Comprehensive understanding of Blockchain architecture across all layers with an in-depth knowledge of the EVM.
• Strong coding skills in Solidity with proficiency in JavaScript and Python
• Solid understanding of cryptography concepts, including practical use in smart contract development and security.

ROOTIES BENEFITS

At RootstockLabs, we don’t just offer a job—we offer a community. Here’s what you can expect when you join us:

• Competitive Salary & eligibility for our RIF Token Plan.
• 100% Remote Work from Europe / Latin America , with access to global CoWorking spaces.
• Work-Life Balance: Up to 35 vacation days, 30 sick days and parental leave
• Continuous Learning: Access to training programs, language courses, and learning sponsorship annually.
• Health & Well-Being: Tools like OpenUp, an employee assistance program.
• Unique Projects: Work with cutting-edge blockchain technology in a global, diverse team.
• Monthly Allowance for Contractors to support your connectivity and well-being.

ABOUT ROOTSTOCKLABS

RootstockLabs exists to make Bitcoin work for everyone. We do this through giving developers the tools to build on Bitcoin, supporting the growth of the Rootstock ecosystem and the RIF economy while continuing to expand the frontiers of decentralized technology.

Our Purpose: To Make Bitcoin work for everyone

Our Mission: Give developers the tools to build on Bitcoin, support the growth of the Rootstock ecosystem, and expand the frontiers of decentralized technology.