Senior Application Security Engineer

We are a multi-chain NFT Platform, pushing boundaries on Solana, Ethereum, Polygon, and Bitcoin! Our mission is to to make digital ownership universal to supercharge the internet economy. Working at Magic Eden is a chance to dig in deep and to grow. We embrace fear, show up for each other with empathy and care, and embody a build-first culture. We ship first, improve always. We're backed by Sequoia, Paradigm, Electric Capital, Lightspeed Ventures and many more.

Our love for NFTs created a deep desire and long-run mission: mass adoption. We want to bring NFTs to people's everyday life and onboard the next billion users to the blockchain. To do that, we want to cover the ecosystem at large, regardless of chains! We believe Magic Eden will be the default destination for creators and collectors on web3.

We're looking for an experienced Application Security Engineer to join our growing security team. You will play a crucial role in embedding security into our development processes, working alongside our engineers to ensure that Magic Eden services are designed and implemented to the highest security standards.

Responsibilities:

• Conduct comprehensive design reviews, threat modeling, and code reviews for new features and products.
• Identify gaps in our software development process and take initiative leading efforts to address them.
• Educate and train the engineering teams on secure coding best practices.
• Investigate vulnerabilities reported via our bug bounty platform, determining their root cause and severity.
• Document identified vulnerabilities clearly to enable quick action by the engineering team.

What you bring:

• 6+ years of experience building and securing software, with at least 4 years focused on application security.
• Strong understanding of security risks, vulnerabilities and concepts in web and mobile applications.
• Proficiency in TypeScript, Rust, and iOS/Android application development.
• Proven experience in security design reviews, threat modeling, or security testing.
• Excellent written and verbal communication skills.

Nice to haves:

• Experience working as a software developer
• Experience designing or reviewing smart contacts and protocols
• Experience managing, running, or participating in bug bounty programs

What you get:

• A fast-paced and collaborative environment
• Competitive compensation and equity options
• Flexible PTO
• Comprehensive health, dental and vision plans
• Wellness and work from home allowance
• Remote-first company
• 401k plan (in the US)

The base salary for this position will vary based on geography and other factors. The base salary range for this role is $185,000-$220,000. Additionally, this role is eligible to participate in Magic Eden's equity plan. Final offer amount will be at the company's sole discretion and determined by multiple factors, including years and depth of experience and expertise, location and other business considerations.

Equal Employment Opportunities at Magic Eden

Magic Eden is committed to hiring talented and qualified individuals with diverse backgrounds for all of its tech, non-tech, and leadership roles. Magic Eden believes that the gathering and celebration of unique backgrounds, qualities, and cultures enriches the workplace.

Magic Eden also welcomes the opportunity to consider qualified applicants with prior arrest or conviction records. Magic Eden's commitment to diversity extends to hiring talented individuals in spite of a prior criminal history in accordance with local, state, and/or federal laws, including the San Francisco's Fair Chance Ordinance.

This employer participates in E-Verify.