Thesis is hiring a
Security Auditor

Summary

Join Thesis Defense, the auditing services arm of Thesis, Inc., as a Security Auditor to conduct comprehensive security audits and identify vulnerabilities in decentralized systems.

Requirements

• Proven experience in security auditing, with a deep understanding of blockchain technology, smart contracts, and decentralized systems
• Professional security certifications specific to blockchain technology are highly desirable
• Working knowledge / expertise of one or more of the following programming languages used in blockchain development, such as Solidity, TypeScript / JavaScript, Go, or Rust is essential
• Ability to understand complex concepts including source code, system components and their interactions, and the business logic of a protocol
• Ability to formulate attack vectors and identify security vulnerabilities
• Excellent analytical, problem-solving, and communication skills, capable of conveying complex security concepts to diverse audiences
• Effective communication and reporting skills, capable of explaining technical details and recommendations to non-technical stakeholders
• Detail-oriented with a proactive approach to problem-solving
• A commitment to continuous learning and staying current with the evolving landscape of security threats and defenses
• An exceptional team player that works and collaborates well with a team on each project
• Prior experience working in a fully remote, geographically-distributed workplaces

Responsibilities

• Conduct thorough, in-depth security audits across various systems, networks, and applications to identify vulnerabilities and risks
• Analyze and evaluate cryptographic protocols and encryption techniques used to ensure they meet the highest security standards
• Develop and implement robust security policies and procedures tailored to the unique challenges of each project being audited
• Collaborate with development teams to integrate security practices into the development lifecycle
• Prepare detailed audit reports, documenting audit findings, implications, providing clear and actionable recommendations for addressing identified security issues
• Stay abreast of emerging security threats, vulnerabilities, and controls in the crypto space, continuously adapting audit strategies to mitigate new risks
• Provide expert guidance on regulatory compliance and best practices related to security and privacy standards
• Facilitate security training sessions for technical and non-technical team members to foster a culture of security awareness
• (Optional) Perform penetration testing and vulnerability assessments on a wide range of crypto projects and technologies

Benefits

• Full health benefits
• Opportunity for equity