This job post is more than thirty days old. The position is likely filled by now.
Certora (https://www.certora.com/) is looking for passionate Rust smart contract security researchers. Read below for more information. If you are interested, please contact jessica@certora.com with your resume.
About Certora
Certora is a Web3 security company that provides industry-leading formal verification tools and smart contract audits. Certora’s flagship security product, the Certora Prover, is a unique SaaS product which automatically locates even the most rare & hard-to-find bugs on your smart contracts or mathematically proves their absence. The Certora Prover plugs into your standard deployment pipeline. It is helpful for smart contract developers and security researchers during auditing and bug bounties. It has already been used by the top DeFi protocols to secure 25 billion dollars. Some of our clients are MakerDAO, AAVE, Morpho, Ethereum Foundation, GMX.
Certora also provides other security services such as code audits. We also work with protocols on bug bounties and organize competitions.
About the role
-
A deep understanding of Rust is necessary, including understanding the Rust compilation pipeline, e.g, how it gets compiled to LLVM.
-
The candidate must be able to understand complex logic. Candidates should have a strong understanding of security primitives and be up to date with current exploits. Awareness of the current DeFi landscape is a big plus, and experience with exploitation techniques of financial protocols is a valued skill.
-
Candidates must be technically driven, motivated, and intellectually curious who can communicate their ideas clearly while working with clients to achieve their security objectives.
-
This is an opportunity to join a great company working on unique formal verification technology for finding bugs and vulnerabilities in smart contracts. You will have the opportunity to work with and learn from some of the brightest minds in the space, to see how we approach hacking, threat modeling, scanning, auditing, designing, and enhancing the security of smart contracts across the board.
Relevant skills
See below to know more about the specific skills required for this job.
Research skills
-
Ability to read Rust code written by others and understanding the logic deeply
-
Strong debugging skills and/or experience in reverse engineering
-
Fuzzing and formal verification background is a plus
-
Good understanding of common smart contract vulnerabilities
-
Fluency with common tools and frameworks used for the development and security analysis of smart contracts
Technologies
-
Solid understanding of the Solana Virtual Machine, familiarity with Solana related frameworks like Anchor is a plus
-
Understanding of Stellar is an advantage
Education
-
Bachelor's degree or above in computer science or engineering is an advantage
-
Coding Bootcamps
Other
- Good written and verbal communication skills