About the company
Thesis* is a crypto venture studio behind the behind Fold, Keep, tBTC, Saddle, and Tally Ho! Weāre a fun, down-to-earth, fast-paced, highly collaborative, and fully remote team. We are a cryptocurrency venture studio whose mission is to empower the individual. We seek, fund, and build products and protocols in cryptocurrency and decentralized businesses that enable personal empowerment. Our projects include Keep (now Threshold) Network, a privacy protocol for public blockchains, Fold, for earning Bitcoin on your purchases in the physical and virtual worlds, Saddle, a community owned, open source stablecoin swap protocol, and Tally Ho, a community owned and operated cryptocurrency wallet. Investors in the company include Andreessen Horowitz, Polychain Capital, and Draper Associates, among others. We are a remote-first company, led by founders who have been operating in the cryptocurrency and blockchain space since 2014.
Job Summary
Responsibilities
šConduct thorough, in-depth security audits across various systems, networks, and applications to identify vulnerabilities and risks. šAnalyze and evaluate cryptographic protocols and encryption techniques used to ensure they meet the highest security standards. šDevelop and implement robust security policies and procedures tailored to the unique challenges of each project being audited. šCollaborate with development teams to integrate security practices into the development lifecycle. šPrepare detailed audit reports, documenting audit findings, implications, providing clear and actionable recommendations for addressing identified security issues. šStay abreast of emerging security threats, vulnerabilities, and controls in the crypto space, continuously adapting audit strategies to mitigate new risks. šProvide expert guidance on regulatory compliance and best practices related to security and privacy standards. šFacilitate security training sessions for technical and non-technical team members to foster a culture of security awareness. š(Optional) Perform penetration testing and vulnerability assessments on a wide range of crypto projects and technologies.
Requirements
šProven experience in security auditing, with a deep understanding of blockchain technology, smart contracts, and decentralized systems. šProfessional security certifications specific to blockchain technology are highly desirable. šWorking knowledge / expertise of one or more of the following programming languages used in blockchain development, such as Solidity, TypeScript / JavaScript, Go, or Rust is essential. šAbility to understand complex concepts including source code, system components and their interactions, and the business logic of a protocol. šAbility to formulate attack vectors and identify security vulnerabilities. šExcellent analytical, problem-solving, and communication skills, capable of conveying complex security concepts to diverse audiences. šEffective communication and reporting skills, capable of explaining technical details and recommendations to non-technical stakeholders. šDetail-oriented with a proactive approach to problem-solving. šA commitment to continuous learning and staying current with the evolving landscape of security threats and defenses. šAn exceptional team player that works and collaborates well with a team on each project. šPrior experience working in a fully remote, geographically-distributed workplaces.
